Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-39325 (GCVE-0-2023-39325)
Vulnerability from cvelistv5 – Published: 2023-10-11 21:15 – Updated: 2025-02-13 17:02- CWE-400 - Uncontrolled Resource Consumption
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/http |
Affected:
0 , < 1.20.10
(semver)
Affected: 1.21.0-0 , < 1.21.3 (semver) |
|
| golang.org/x/net | golang.org/x/net/http2 |
Affected:
0 , < 0.17.0
(semver)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T18:02:06.746Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/issue/63417"
},
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/cl/534215"
},
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/cl/534235"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ"
},
{
"tags": [
"x_transferred"
],
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20231110-0008/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202311-09"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/http",
"product": "net/http",
"programRoutines": [
{
"name": "http2serverConn.serve"
},
{
"name": "http2serverConn.processHeaders"
},
{
"name": "http2serverConn.upgradeRequest"
},
{
"name": "http2serverConn.runHandler"
},
{
"name": "ListenAndServe"
},
{
"name": "ListenAndServeTLS"
},
{
"name": "Serve"
},
{
"name": "ServeTLS"
},
{
"name": "Server.ListenAndServe"
},
{
"name": "Server.ListenAndServeTLS"
},
{
"name": "Server.Serve"
},
{
"name": "Server.ServeTLS"
},
{
"name": "http2Server.ServeConn"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.20.10",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.21.3",
"status": "affected",
"version": "1.21.0-0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/net/http2",
"product": "golang.org/x/net/http2",
"programRoutines": [
{
"name": "serverConn.serve"
},
{
"name": "serverConn.processHeaders"
},
{
"name": "serverConn.upgradeRequest"
},
{
"name": "serverConn.runHandler"
},
{
"name": "Server.ServeConn"
}
],
"vendor": "golang.org/x/net",
"versions": [
{
"lessThan": "0.17.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a new request while the existing one is still executing. With the fix applied, HTTP/2 servers now bound the number of simultaneously executing handler goroutines to the stream concurrency limit (MaxConcurrentStreams). New requests arriving when at the limit (which can only happen after the client has reset an existing, in-flight request) will be queued until a handler exits. If the request queue grows too large, the server will terminate the connection. This issue is also fixed in golang.org/x/net/http2 for users manually configuring HTTP/2. The default stream concurrency limit is 250 streams (requests) per HTTP/2 connection. This value may be adjusted using the golang.org/x/net/http2 package; see the Server.MaxConcurrentStreams setting and the ConfigureServer function."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-04-28T04:05:57.980Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/issue/63417"
},
{
"url": "https://go.dev/cl/534215"
},
{
"url": "https://go.dev/cl/534235"
},
{
"url": "https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ"
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231110-0008/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/"
},
{
"url": "https://security.gentoo.org/glsa/202311-09"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/"
}
],
"title": "HTTP/2 rapid reset can cause excessive work in net/http"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2023-39325",
"datePublished": "2023-10-11T21:15:02.727Z",
"dateReserved": "2023-07-27T17:05:55.188Z",
"dateUpdated": "2025-02-13T17:02:50.341Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-39325",
"date": "2026-07-02",
"epss": "0.03796",
"percentile": "0.88686"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.20.0\", \"versionEndExcluding\": \"1.20.10\", \"matchCriteriaId\": \"99C776A5-1409-4638-AB9A-8A2B053DBFE1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.21.0\", \"versionEndExcluding\": \"1.21.3\", \"matchCriteriaId\": \"5FD9AB15-E5F6-4DBC-9EC7-D0ABA705802A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:http2:*:*:*:*:*:go:*:*\", \"versionEndExcluding\": \"0.17.0\", \"matchCriteriaId\": \"D7D2F801-6F65-4705-BCB9-D057EA54A707\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:astra_trident:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4E44A7B-F32A-43F2-B41A-CB3049100DF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:astra_trident_autosupport:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25008095-A75E-4E34-9538-61B6334BB0F9\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a new request while the existing one is still executing. With the fix applied, HTTP/2 servers now bound the number of simultaneously executing handler goroutines to the stream concurrency limit (MaxConcurrentStreams). New requests arriving when at the limit (which can only happen after the client has reset an existing, in-flight request) will be queued until a handler exits. If the request queue grows too large, the server will terminate the connection. This issue is also fixed in golang.org/x/net/http2 for users manually configuring HTTP/2. The default stream concurrency limit is 250 streams (requests) per HTTP/2 connection. This value may be adjusted using the golang.org/x/net/http2 package; see the Server.MaxConcurrentStreams setting and the ConfigureServer function.\"}, {\"lang\": \"es\", \"value\": \"Un cliente HTTP/2 malicioso que crea solicitudes r\\u00e1pidamente y las restablece inmediatamente puede provocar un consumo excesivo de recursos del servidor. Si bien el n\\u00famero total de solicitudes est\\u00e1 limitado por la configuraci\\u00f3n http2.Server.MaxConcurrentStreams, restablecer una solicitud en curso permite al atacante crear una nueva solicitud mientras la existente a\\u00fan se est\\u00e1 ejecutando. Con la soluci\\u00f3n aplicada, los servidores HTTP/2 ahora vincularon el n\\u00famero de rutinas de controlador que se ejecutan simult\\u00e1neamente al l\\u00edmite de concurrencia de transmisi\\u00f3n (MaxConcurrentStreams). Las nuevas solicitudes que lleguen cuando se encuentre en el l\\u00edmite (lo que solo puede ocurrir despu\\u00e9s de que el cliente haya restablecido una solicitud existente en curso) se pondr\\u00e1n en cola hasta que salga un controlador. Si la cola de solicitudes crece demasiado, el servidor finalizar\\u00e1 la conexi\\u00f3n. Este problema tambi\\u00e9n se solucion\\u00f3 en golang.org/x/net/http2 para los usuarios que configuran HTTP/2 manualmente. El l\\u00edmite de simultaneidad de transmisiones predeterminado es 250 transmisiones (solicitudes) por conexi\\u00f3n HTTP/2. Este valor se puede ajustar utilizando el paquete golang.org/x/net/http2; consulte la configuraci\\u00f3n Server.MaxConcurrentStreams y la funci\\u00f3n ConfigureServer.\"}]",
"id": "CVE-2023-39325",
"lastModified": "2024-11-21T08:15:09.627",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
"published": "2023-10-11T22:15:09.880",
"references": "[{\"url\": \"https://go.dev/cl/534215\", \"source\": \"security@golang.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://go.dev/cl/534235\", \"source\": \"security@golang.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://go.dev/issue/63417\", \"source\": \"security@golang.org\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ\", \"source\": \"security@golang.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/\", \"source\": \"security@golang.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2023-2102\", \"source\": \"security@golang.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20231110-0008/\", \"source\": \"security@golang.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://go.dev/cl/534215\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://go.dev/cl/534235\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://go.dev/issue/63417\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2023-2102\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20231110-0008/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "security@golang.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-770\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-39325\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2023-10-11T22:15:09.880\",\"lastModified\":\"2026-06-17T06:12:02.173\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a new request while the existing one is still executing. With the fix applied, HTTP/2 servers now bound the number of simultaneously executing handler goroutines to the stream concurrency limit (MaxConcurrentStreams). New requests arriving when at the limit (which can only happen after the client has reset an existing, in-flight request) will be queued until a handler exits. If the request queue grows too large, the server will terminate the connection. This issue is also fixed in golang.org/x/net/http2 for users manually configuring HTTP/2. The default stream concurrency limit is 250 streams (requests) per HTTP/2 connection. This value may be adjusted using the golang.org/x/net/http2 package; see the Server.MaxConcurrentStreams setting and the ConfigureServer function.\"},{\"lang\":\"es\",\"value\":\"Un cliente HTTP/2 malicioso que crea solicitudes r\u00e1pidamente y las restablece inmediatamente puede provocar un consumo excesivo de recursos del servidor. Si bien el n\u00famero total de solicitudes est\u00e1 limitado por la configuraci\u00f3n http2.Server.MaxConcurrentStreams, restablecer una solicitud en curso permite al atacante crear una nueva solicitud mientras la existente a\u00fan se est\u00e1 ejecutando. Con la soluci\u00f3n aplicada, los servidores HTTP/2 ahora vincularon el n\u00famero de rutinas de controlador que se ejecutan simult\u00e1neamente al l\u00edmite de concurrencia de transmisi\u00f3n (MaxConcurrentStreams). Las nuevas solicitudes que lleguen cuando se encuentre en el l\u00edmite (lo que solo puede ocurrir despu\u00e9s de que el cliente haya restablecido una solicitud existente en curso) se pondr\u00e1n en cola hasta que salga un controlador. Si la cola de solicitudes crece demasiado, el servidor finalizar\u00e1 la conexi\u00f3n. Este problema tambi\u00e9n se solucion\u00f3 en golang.org/x/net/http2 para los usuarios que configuran HTTP/2 manualmente. El l\u00edmite de simultaneidad de transmisiones predeterminado es 250 transmisiones (solicitudes) por conexi\u00f3n HTTP/2. Este valor se puede ajustar utilizando el paquete golang.org/x/net/http2; consulte la configuraci\u00f3n Server.MaxConcurrentStreams y la funci\u00f3n ConfigureServer.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/http\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/http\",\"programRoutines\":[{\"name\":\"http2serverConn.serve\"},{\"name\":\"http2serverConn.processHeaders\"},{\"name\":\"http2serverConn.upgradeRequest\"},{\"name\":\"http2serverConn.runHandler\"},{\"name\":\"ListenAndServe\"},{\"name\":\"ListenAndServeTLS\"},{\"name\":\"Serve\"},{\"name\":\"ServeTLS\"},{\"name\":\"Server.ListenAndServe\"},{\"name\":\"Server.ListenAndServeTLS\"},{\"name\":\"Server.Serve\"},{\"name\":\"Server.ServeTLS\"},{\"name\":\"http2Server.ServeConn\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.20.10\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.21.0-0\",\"lessThan\":\"1.21.3\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"golang.org/x/net\",\"product\":\"golang.org/x/net/http2\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"golang.org/x/net/http2\",\"programRoutines\":[{\"name\":\"serverConn.serve\"},{\"name\":\"serverConn.processHeaders\"},{\"name\":\"serverConn.upgradeRequest\"},{\"name\":\"serverConn.runHandler\"},{\"name\":\"Server.ServeConn\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"0.17.0\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.20.0\",\"versionEndExcluding\":\"1.20.10\",\"matchCriteriaId\":\"99C776A5-1409-4638-AB9A-8A2B053DBFE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.21.0\",\"versionEndExcluding\":\"1.21.3\",\"matchCriteriaId\":\"5FD9AB15-E5F6-4DBC-9EC7-D0ABA705802A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:http2:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.17.0\",\"matchCriteriaId\":\"D7D2F801-6F65-4705-BCB9-D057EA54A707\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:astra_trident:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4E44A7B-F32A-43F2-B41A-CB3049100DF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:astra_trident_autosupport:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25008095-A75E-4E34-9538-61B6334BB0F9\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/534215\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://go.dev/cl/534235\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://go.dev/issue/63417\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ\",\"source\":\"security@golang.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2023-2102\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20231110-0008/\",\"source\":\"security@golang.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://go.dev/cl/534215\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://go.dev/cl/534235\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://go.dev/issue/63417\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3OVW5V2DM5K5IC3H7O42YDUGNJ74J35O/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZN67IL7HMGMNAVLOTIXLIHUDXZK4LH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3WJ4QVX2AMUJ2F2S27POOAHRC4K3CHU4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BUK2ZIAGCULOOYDNH25JPU6JBES5NF2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5RSKA2II6QTD4YUKUNDVJQSRYSFC4VFR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVZDNSMVDAQJ64LJC5I5U5LDM5753647/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2BBIDR2ZMB3X5BC7SR4SLQMHRMVPY6L/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ECRC75BQJP6FJN2L7KCKYZW4DSBD7QSD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FTMJ3NJIDAZFWJQQSP3L22MUFJ3UP2PT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSY7SXFFTPZFWDM6XELSDSHZLVW3AHK7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HZQIELEIRSZUYTFFH5KTH2YJ4IIQG2KE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPWCNYB5PQ5PCVZ4NJT6G56ZYFZ5QBU6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5E5JSJBZLYXOTZWXHJKRVCIXIHVWKJ6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MZQYOOKHQDQ57LV2IAG6NRFOVXKHJJ3Z/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NG7IMPL55MVWU3LCI4JQJT3K2U5CHDV7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ODBY7RVMGZCBSTWF2OZGIZS57FNFUL67/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OXGWPQOJ3JNDW2XIYKIVJ7N7QUIFNM2Q/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJCUNGIQDUMZ4Z6HWVYIMR66A35F5S74/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QF5QSYAOPDOWLY6DUHID56Q4HQFYB45I/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QXOU2JZUBEBP7GBKAYIJRPRBZSJCD7ST/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3UETKPUB3V5JS5TLZOF3SMTGT5K5APS/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/REMHVVIBDNKSRKNOTV7EQSB7CYQWOUOU/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7N5GV4CHH6WAGX3GFMDD3COEOVCZ4RI/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ULQQONMSCQSH5Z5OWFFQHCGEZ3NL4DRJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTT7DG3QOF5ZNJLUGHDNLRUIN6OWZARP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W2LZSWTV4NV4SNQARNXG5T6LRHP26EW2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WCNCBYKZXLDFGAJUB7ZP5VLC3YTHJNVH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XTNLSL44Y5FB6JWADSZH6DCV4JJAAEQY/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJWHBLVZDM5KQSDFRBFRKU5KSSOLIRQ4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRKEXKANQ7BKJW2YTAMP625LJUJZLJ4P/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZSVEMQV5ROY5YW5QE3I57HT3ITWG5GCV/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2023-2102\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20231110-0008/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
RHSA-2023_6220
Vulnerability from csaf_redhat - Published: 2023-10-31 18:22 - Updated: 2024-12-18 04:52A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenShift GitOps 1.10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift GitOps 1.10.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6220",
"url": "https://access.redhat.com/errata/RHSA-2023:6220"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/gitops/latest/understanding_openshift_gitops/about-redhat-openshift-gitops.html",
"url": "https://docs.openshift.com/gitops/latest/understanding_openshift_gitops/about-redhat-openshift-gitops.html"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6220.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.10.1 security update",
"tracking": {
"current_release_date": "2024-12-18T04:52:08+00:00",
"generator": {
"date": "2024-12-18T04:52:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6220",
"initial_release_date": "2023-10-31T18:22:09+00:00",
"revision_history": [
{
"date": "2023-10-31T18:22:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-31T18:22:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.10",
"product": {
"name": "Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.10.1-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.10.1-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.10.1-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.10.1-3"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.10.1-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le"
],
"known_not_affected": [
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-31T18:22:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6220"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:16c949645ea3394fe5949b65ecb9ab8fad19b4e9394efde09e2e23daec86f6c0_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:27538a9192e7191ebc9ba66305d6fe6e424e86b47058664f03332b912f8f9ddd_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:a0fbcaa5d1f06b041ad2349c9823d15dc9c280303fb8cdee6430ac958872f2e1_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72a2073d528a99b5addb36e05d791230454b53e30161c0c6bb0f0a41ba44622_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:335cf1805d6c33e7a990c4a795d9ca254e82021d072664ce711ccb7bc9fa13d6_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:76f93939fa372439f0a0931bc77bbd5d74864fec41155c03cb0b31f8c902df5a_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:a32794dad3fa8963e86e87744ca2595cb40d958e42e5ed8149a18c44bcc1ee15_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/argocd-rhel8@sha256:ead93a1bcc5a8c497ad4042c9e539450b20cbfca49bdc3677e51ca1ba881c321_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:3d6e3cbad1ffca6f662e6130024a61982e6c6884199b04b8a469734cc0f578bf_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:671a50eb7cb6ec8750e72c30e0bd2f3b4a2252bcf8993bafed8e35ccd236f6dd_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:ca4b850c436cb203933d6e0fae2bd6aa13f86e084e34d187d532e706a5f87789_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/console-plugin-rhel8@sha256:f74a99192da67363a283815a3d1e941d643424bc906b06057a04c5345f8bc920_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:601d38d66c07145a5f4c8869c9edbe0a2934974f3a41e31e067a0db0da5dfd72_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:761684931f8b8cb178b7093fd0ef4c87d048cc1eccc47fb89b14d0464024a9c7_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:8f3d247e46e9d07759d29c7212e5900babe330d96d96b850fda19222e2202966_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/dex-rhel8@sha256:926121cfb5001b91cca137a5085553ad790e185090c104d64f78cdc8c2221c43_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-operator-bundle@sha256:954733d0c9c77cd42e65fcaa6b4b6f9295b5d43d2d81cecd82758f88ef2eb07c_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:5141a6d11f19dd426390c5041080da7f7a09eab6b9d87f7ffcb8e59483865088_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:88ed7760fcec1e50cab43be21ce8794cb64962a6dd1895be23c5fd53d7398950_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:a1072a2be6cdb5ca8d32761c9973dfa42c5037a45caea8f8214a78e438448692_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8-operator@sha256:e2610683d9e2610d4cd58a0d082cf2508bd8731136f17774cb6118568a5da101_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:139d076eca407abfa5d61a669ad60b0d57323eca0881dffc51b5b0fee2324a45_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:794cb8cb74169086528523427daec2fec26d9b2fff999d5dc1c453e36461a75c_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:d0dc555f70ce43308119c14b8dc9b6ca72e2ae6c91b151f144a015e624cb9e07_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/gitops-rhel8@sha256:f1ea4aba3566b827e4442c228fd8840e50443354bc676615dd33dd940cda3d82_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:883698f945e44879ac8d84639addcf213bbe1af61bca67020006517b11e22f40_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:929b479de633cce8f697a2659c59bbb17827674e2c08a35ed16db44d3ec73632_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:a2f41d3ee8c461b471dd2714add10c8f3bc6be59f3b411d5e825061c36df3e4b_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/kam-delivery-rhel8@sha256:e4d52f274a14ad1c37b8b22a7c2ef649e55b2b03663ce83cb3ac7e386cf4472c_ppc64le",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:6f4f71f4a596b0c018f1d3e3eeb9cc573a456c30391c8cc1fad47d6686ea52de_amd64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:76c727a9a5ec01308f282f3434b1ff30ce0a669db3b8f573a3b6a419fee4eb47_s390x",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:c03bf09c5673e74a56145b90d509e47567c89f177e08b56b1212c33a9054b37f_arm64",
"8Base-GitOps-1.10:openshift-gitops-1/must-gather-rhel8@sha256:cf9fbdba6f3966c2cbc42468748f1439798e6fa29fee404b7bc50a793893e05d_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
}
]
}
RHSA-2023_6233
Vulnerability from csaf_redhat - Published: 2023-11-01 11:34 - Updated: 2024-12-18 04:52A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64 | — |
Workaround
|
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform low-latency extras release 4.12, which provides an update for cnf-tests-container, performance-addon-operator-must-gather-rhel8-container, NUMA-aware secondary scheduler and numaresources-operator, is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the extra low-latency container images for Red Hat OpenShift Container Platform 4.12. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:6126\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform users are advised to upgrade to these updated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6233",
"url": "https://access.redhat.com/errata/RHSA-2023:6233"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6233.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Enterprise security update",
"tracking": {
"current_release_date": "2024-12-18T04:52:18+00:00",
"generator": {
"date": "2024-12-18T04:52:18+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6233",
"initial_release_date": "2023-11-01T11:34:35+00:00",
"revision_history": [
{
"date": "2023-11-01T11:34:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T11:34:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:18+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.12",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"product": {
"name": "openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"product_id": "openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/cnf-tests-rhel8\u0026tag=v4.12.6-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"product": {
"name": "openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"product_id": "openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/dpdk-base-rhel8\u0026tag=v4.12.6-2"
}
}
},
{
"category": "product_version",
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"product": {
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"product_id": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/noderesourcetopology-scheduler-container-rhel8\u0026tag=v4.12.6-8"
}
}
},
{
"category": "product_version",
"name": "openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"product": {
"name": "openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"product_id": "openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/numaresources-operator-bundle\u0026tag=v4.12.6-10"
}
}
},
{
"category": "product_version",
"name": "openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"product": {
"name": "openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"product_id": "openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/numaresources-rhel8-operator\u0026tag=v4.12.6-7"
}
}
},
{
"category": "product_version",
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64",
"product": {
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64",
"product_id": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64",
"product_identification_helper": {
"purl": "pkg:oci/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/performance-addon-operator-must-gather-rhel8\u0026tag=v4.12.6-7"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64"
},
"product_reference": "openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64"
},
"product_reference": "openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64"
},
"product_reference": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64"
},
"product_reference": "openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64"
},
"product_reference": "openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
},
"product_reference": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64"
],
"known_not_affected": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T11:34:35+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.12/release_notes/ocp-4-12-release-notes.html\n\nDetails on how to access this content are available at https://docs.openshift.com/container-platform/4.12/updating/updating-cluster-cli.html.",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6233"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64"
],
"known_not_affected": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T11:34:35+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.12/release_notes/ocp-4-12-release-notes.html\n\nDetails on how to access this content are available at https://docs.openshift.com/container-platform/4.12/updating/updating-cluster-cli.html.",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6233"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:openshift4/cnf-tests-rhel8@sha256:29579a785974ff1130882f04495f90ba8423ea0fb17bf445b82dd919b19c515d_amd64",
"8Base-RHOSE-4.12:openshift4/dpdk-base-rhel8@sha256:3faf3d37e7fb8125bf5c49a93cac0e69dd2dbcafcfa27939e706f1d969caa8e7_amd64",
"8Base-RHOSE-4.12:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:245a7c990bcb554ded0f4832957db51d0439311bd85b5c89943e33001e29a2fe_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-operator-bundle@sha256:d058f59dbc21e6b015de06bad2d42e2cec078cbbc80a76fe2f914d641caaef7b_amd64",
"8Base-RHOSE-4.12:openshift4/numaresources-rhel8-operator@sha256:9ae57e31edf4e0a10768d52c7a0cce4f38ce16a0e75785e356ae0c00b73b200c_amd64",
"8Base-RHOSE-4.12:openshift4/performance-addon-operator-must-gather-rhel8@sha256:76501b6f85aac090077094f0d4a2da4475b788b1fb7698b6ec33f17e1b2eb898_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023_6235
Vulnerability from csaf_redhat - Published: 2023-11-01 12:04 - Updated: 2024-12-18 04:52A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64 | — | ||
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64 | — |
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64 | — |
Workaround
|
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Virtualization release 4.13.5 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Virtualization is Red Hat\u0027s virtualization solution designed for Red Hat OpenShift Container Platform.\n\nThis advisory contains OpenShift Virtualization 4.13.5 images.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* [4.13] portworx: update the storageProfile (BZ#2237872)\n\n* kubevirt_vmi_phase_count metrics is not working in 4.13.5 (BZ#2240675)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6235",
"url": "https://access.redhat.com/errata/RHSA-2023:6235"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2237872",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237872"
},
{
"category": "external",
"summary": "2240675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240675"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6235.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Virtualization 4.13.5 Images security update",
"tracking": {
"current_release_date": "2024-12-18T04:52:27+00:00",
"generator": {
"date": "2024-12-18T04:52:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6235",
"initial_release_date": "2023-11-01T12:04:35+00:00",
"revision_history": [
{
"date": "2023-11-01T12:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T12:04:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CNV 4.13 for RHEL 9",
"product": {
"name": "CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:container_native_virtualization:4.13::el9"
}
}
}
],
"category": "product_family",
"name": "OpenShift Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"product": {
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"product_id": "container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/bridge-marker-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"product": {
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"product_id": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cluster-network-addons-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"product": {
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"product_id": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-containernetworking-plugins-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"product": {
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"product_id": "container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-must-gather-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"product": {
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"product_id": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hco-bundle-registry-rhel9\u0026tag=v4.13.5.rhel9--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"product": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"product_id": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-csi-driver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-operator-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-webhook-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"product": {
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"product_id": "container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubemacpool-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"product": {
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"product_id": "container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubesecondarydns-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"product_id": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-console-plugin-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"product_id": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-dpdk-checkup-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"product_id": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-ssp-operator-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"product_id": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-template-validator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"product": {
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"product_id": "container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"product_identification_helper": {
"purl": "pkg:oci/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/libguestfs-tools-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"product": {
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"product_id": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/multus-dynamic-networks-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"product": {
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"product_id": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-plugin-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"product": {
"name": "container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"product_id": "container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-api-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"product": {
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"product_id": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-artifacts-server-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"product_id": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-apiserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"product_id": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-cloner-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"product_id": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-controller-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"product_id": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-importer-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"product_id": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadproxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"product": {
"name": "container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"product_id": "container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-controller-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"product": {
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"product_id": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportproxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"product": {
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"product_id": "container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"product": {
"name": "container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"product_id": "container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-handler-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"product": {
"name": "container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"product_id": "container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virtio-win-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"product": {
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"product_id": "container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-launcher-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"product": {
"name": "container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"product_id": "container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"product": {
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"product_id": "container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-console-proxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"product": {
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"product_id": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-network-latency-checkup-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"product": {
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"product_id": "container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"product_identification_helper": {
"purl": "pkg:oci/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/bridge-marker-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"product": {
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"product_id": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/cluster-network-addons-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"product": {
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"product_id": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-containernetworking-plugins-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"product": {
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"product_id": "container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-must-gather-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"product": {
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"product_id": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hco-bundle-registry-rhel9\u0026tag=v4.13.5.rhel9--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"product": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"product_id": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-csi-driver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"product_id": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-operator-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"product_id": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"product_id": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-webhook-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"product": {
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"product_id": "container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubemacpool-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"product": {
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"product_id": "container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubesecondarydns-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"product_id": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-console-plugin-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"product_id": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-dpdk-checkup-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"product_id": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-ssp-operator-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"product": {
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"product_id": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-template-validator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"product": {
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"product_id": "container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"product_identification_helper": {
"purl": "pkg:oci/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/libguestfs-tools-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"product": {
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"product_id": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/multus-dynamic-networks-rhel9\u0026tag=v4.13.5-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"product": {
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"product_id": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-plugin-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"product": {
"name": "container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"product_id": "container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-api-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"product": {
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"product_id": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-artifacts-server-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"product_id": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-apiserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"product_id": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-cloner-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"product_id": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-controller-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"product_id": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-importer-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"product_id": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"product_id": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadproxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"product_id": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"product": {
"name": "container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"product_id": "container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-controller-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"product": {
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"product_id": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportproxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"product": {
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"product_id": "container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportserver-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"product": {
"name": "container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"product_id": "container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-handler-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"product": {
"name": "container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"product_id": "container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virtio-win-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"product": {
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"product_id": "container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-launcher-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"product": {
"name": "container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"product_id": "container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-operator-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"product": {
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"product_id": "container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-console-proxy-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64",
"product": {
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64",
"product_id": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b?arch=arm64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-network-latency-checkup-rhel9\u0026tag=v4.13.5--2023-120566"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64"
},
"product_reference": "container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64"
},
"product_reference": "container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64"
},
"product_reference": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64"
},
"product_reference": "container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64"
},
"product_reference": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64"
},
"product_reference": "container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64"
},
"product_reference": "container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64"
},
"product_reference": "container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64"
},
"product_reference": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64"
},
"product_reference": "container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64"
},
"product_reference": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64"
},
"product_reference": "container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64"
},
"product_reference": "container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64"
},
"product_reference": "container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64"
},
"product_reference": "container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64"
},
"product_reference": "container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64"
},
"product_reference": "container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64"
},
"product_reference": "container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64"
},
"product_reference": "container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64"
},
"product_reference": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64"
},
"product_reference": "container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64"
},
"product_reference": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64"
},
"product_reference": "container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64"
},
"product_reference": "container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64"
},
"product_reference": "container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64"
},
"product_reference": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64"
},
"product_reference": "container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64"
},
"product_reference": "container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64"
},
"product_reference": "container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64"
},
"product_reference": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64"
},
"product_reference": "container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64"
},
"product_reference": "container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64"
},
"product_reference": "container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64"
},
"product_reference": "container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64"
},
"product_reference": "container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64"
},
"product_reference": "container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64"
},
"product_reference": "container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64"
},
"product_reference": "container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64"
},
"product_reference": "container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64"
},
"product_reference": "container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64"
},
"product_reference": "container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64"
},
"product_reference": "container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64"
},
"product_reference": "container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64"
},
"product_reference": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"relates_to_product_reference": "9Base-CNV-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64 as a component of CNV 4.13 for RHEL 9",
"product_id": "9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
},
"product_reference": "container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64",
"relates_to_product_reference": "9Base-CNV-4.13"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64"
],
"known_not_affected": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T12:04:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6235"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
],
"known_not_affected": [
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T12:04:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6235"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64"
],
"known_not_affected": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T12:04:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6235"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:043c933ecc64a18f18a23862b959e60988d7223f1899d8a77c06e75352ce5a00_arm64",
"9Base-CNV-4.13:container-native-virtualization/bridge-marker-rhel9@sha256:dde9d6d3bd598203276151ca6f09a8d94bc8d68160b8eeb057d528612ee387de_amd64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:0723b4c1c3737c07567392abde70c8d0ff41edc628859ab78b4f1db36ce9e908_arm64",
"9Base-CNV-4.13:container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:79ffb1e1fd3eb66bd8501f73376cd86e031962151fb33b1f5c99b1768558a5bf_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:0259bad586a2641e8f805cb3b011fd13ac2877afa1086be3d5f58eec5b074de0_amd64",
"9Base-CNV-4.13:container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:fae3d9f5dfd142a132fd94f80e8814207aa497459d8942037c383202852ceddd_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:1aea0afaa1678d22f8c60ffaec52a2f126dfacd1d45a1698fb22239926dc43d9_arm64",
"9Base-CNV-4.13:container-native-virtualization/cnv-must-gather-rhel9@sha256:bc0ed2d18c556df388a3a650d365e68f24074219683a81c12b1897c1e8a756ef_amd64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:5c7cf709c5af87312dffbd3ad438fec546002515df7fb27e5628e387c4062da5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hco-bundle-registry-rhel9@sha256:7314d53f44b9058a2a41620ea57c8eafef5161218d412b8ad7353fb570b5ae64_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:30d2d9e998ec622648c848106328ea3a45dc17d51b058f3e222f5199232a1acc_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-csi-driver-rhel9@sha256:8a46da3aa2086587a1d0ff59b62724feac8f1923bede587c5d53ae60ca4256ad_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:280ed417e25231cefbea15d35a456e540329542d59dee59ad1824228bd35e089_amd64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f6ba777473561391d2b0a098ae16cef0552ee7722f9a6fd527b9b06aa3677474_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:45a08c2561bc304bf62cee9043961c578e4e3c495bec3ad2a57f9e1ac2a62316_arm64",
"9Base-CNV-4.13:container-native-virtualization/hostpath-provisioner-rhel9@sha256:c3059286198d3a75dd0cab0a8c751f4dde5b0f5e52cc38fe5b258e9324477c62_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:80f623b7d005f2ed6ccf81af9b032a13fee86c7f4a4f564e932073bca0436bfe_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:ebcd9f0843d8d759b3e358120c4aec90a7238046d7db0c3b6014152182b14eb5_arm64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:2832fbf13013467ea73c63e5e6ad7ffe94dbbeb052ec8727f6935d41b2c4d25c_amd64",
"9Base-CNV-4.13:container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:a549dfc115062d3f9924c4d8527d80de1281d50179d157e6b42699a0535e8449_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:155d511f94a84c412a78f8b7a90f677146996bc5b3c00a0bff12b3567c63302a_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubemacpool-rhel9@sha256:4d91d2b48e984b99f03ad19a25cb9b1c4eb12670fda6848a303009de65e4932e_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:4b2ed5bc8f226433a3c6e2dd926a74085b4ed60ed4f0bd505a8613e4d3c5f3ba_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubesecondarydns-rhel9@sha256:eac30877a8cbe57c844e660516f0370fa4a2070c6ee805a338bde149be05a16e_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:dbb6f6340fd4febbb2a0b9c0493af1b02681e835a8b07ddc421b1956f3cbccab_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:f824525b97a1724c9eb4e0786a19e0dc16609b14915faf31229abc4345fd91f1_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:74975f1f030959c5ad9067c709b848029d08b74a17297da8666638fc8377f4f5_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:d949f12237050460cbf61cf21cc6627c0124525088af419e718dcbaae5ab3b8c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:21176845533bfa0817ea0f29c749be2d6bb00539354bcfa3c013f70460d0a03d_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:90ef77f56d0b7a5c7ac67425fdad169d3f865cc24723bd10635c1d974b9dd540_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:909b0dad28dd12dd3645a661262044d16120b72658ade1a48658c2e86de3afaf_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:96cd6da0c42ce26091f0d9cc7fbc47d24ebeec51b4407d45c5e7d0a7d861e773_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:1d8602530af08cf8344e6d9494a9e53aa51ff54cbf4292a9c5c9633b8d3ddf62_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:6bae230bed0d35e81ebc4f98a9c68afa79a7c48617a21bef9d751412ef133806_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:0495f03ccdc719420f530fcd530f392f0f9d59982fc0d3df9b1cc4d9dc5ac501_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:7807aaec505ba59712ff21c0db7daa33ed13e52ab1f1aba346dc9cbc3295afce_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2239c59d6e1343498d7e0c65d358be6675156a7f1626bcf0052107acb0445927_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:309e43a5a95f95ade124e9e30555d0f2df99a37c606a18aef1e39ba124a37f60_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:811b9aaefae86a945ca7b2b9e0ca23afe36be3f9ea0728386a3e2b3df79fe376_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:ae5fcba31eb7dde0f03a5a947b765b0492a9a805938bdb9075b7c1c3ca7b53c8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:21cc83f45931f6151fb8f4fdf2d06eecaa6d6ce139e41e6946b202adb107db34_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:648df73d58c946aa502bc6cde710239e9a63c54d116441887115c734af420dbc_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:932234c21ddbe7a50cb9e0217299ff08bffac42dc6c47fba3a72b542e082c1a4_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:ea952209ad5400aeb8318869978e50fb17012e0e84d61dbc19d818e2eaf1ba43_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:176782274bed233d5a522f63c435c2504b1182f34d49a2fc87166e284d03522c_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:e91ef2ec173663ad40867d2696d04681d917ef76b1df7ed9c451886a2adb4825_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:94f24421df1e69f957caafdd28327041fa198e89824d13a864c6077d946ba54c_arm64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:f8532cc89663d20221bdb01642e8237f9096ba686697fda12a4f3a63ed991726_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:a1c61fac7dd64e8de733db6af840d2c1c0737208634c7bd76bb8970334e456e8_amd64",
"9Base-CNV-4.13:container-native-virtualization/kubevirt-template-validator-rhel9@sha256:c7492e63269379a8bb8415645e6195f0448247dd7e513edbadf12c07601fb948_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:3a97c4aca2b1c9fb1ca94619ba89965e6343eb6c9a92c34688f861564b8c2095_arm64",
"9Base-CNV-4.13:container-native-virtualization/libguestfs-tools-rhel9@sha256:e667c06a7d1f5569038d0a93275da2333a47bca885a76f444d317dac6b8b6657_amd64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:18b22a9a9453341c3c419319bfa891437402613f01f5f10437ac81fe14a6ce6f_arm64",
"9Base-CNV-4.13:container-native-virtualization/multus-dynamic-networks-rhel9@sha256:739517ad4e74e5f62f95df8301c8360c09f8a441070673bde68c3a1119b26ecb_amd64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:73447696068a5d2f005f9148dc9424d9ca7eb96cc22597228d1ff80a593b5124_arm64",
"9Base-CNV-4.13:container-native-virtualization/ovs-cni-plugin-rhel9@sha256:ffb0c9fe819873c3d923f50aef33f0e253c81df2846a96dbe58516f95080533d_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:4ee279958ee70fa91fce05e17e14d3f5e2f016495b9cc33268441cf5cdeaacac_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-api-rhel9@sha256:eb6fb58636e5f8d2cff86e59f722821522361de25ecd12cb590a2c50184c0f93_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:5a0a241bf8b334a5d52b9cefd74146628b7884e31303e9a63d96e52688e88b59_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-artifacts-server-rhel9@sha256:7cb9c402604382e9477ca83c253cf28a88e0c3afed7c6c2b49da21bf098ad116_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:9f23ef7d9ebea242aca099ca05fc59f008c4b812ebfb42400cf83f9dae9d1914_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:ebff907b257a40d560e6455b46f77e25a66ff5a43d20211c1f84df60afe24e71_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:3ef62bc6ce5756f16a40fc66eaede1d185a6fc6a2418434649cf046cb03e49df_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-cloner-rhel9@sha256:754cdf68bd406ac6d7dec2043cc2e18644944d11d3c5a7144cbf642d0104ff27_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:84f8681a07967b12ae1f60fdba3e0e60e739ff503283441cd41317f15a2dd13c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-controller-rhel9@sha256:e352a385250091e0e5ee314b9f62e5ab45c15226a8e687ef8735988a213bfac9_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:64fa194703392dd4048a9f508f7872e04864000b8728773504a09661a14684cb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-importer-rhel9@sha256:d4e38f20bf2227ddd9a916960c7f8f40df3e4f0df9adf4fedba6688bd26a2fe4_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:8f8262b1dfbf965f7e3be39cb4b829de84d248a9624fcbae56de3fb3ee265ce6_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-operator-rhel9@sha256:accc78929702ab17eed27b5c3c97b7327289b1220a7688b60407489c64f93217_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7070f54131307aa3de5e76d733b1a1fd502827eca1b0d9e5099caa91a86cc26a_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:7e8084302d1c80303a74cecbc25bb45a97c5513f8babfb22b8ef4f0ef032048c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:c0eb37995a2899e06e6a086a458ec52669d25fda5d4fdb7ef88521a91637b318_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:e1f8cb4dba0f3f53b40faa9c32f5a5d98a9bf7b1d25d987ed49abe99be89b561_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:5ace580e85dcdbf18ef50362c0dcfe8e24b30301752cb16efd583a346699676c_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-controller-rhel9@sha256:ab0fef9bd51caa62ef0e900c7fbe72a4fe67a48ef913ba33b6d261648342a0f2_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1a7a2bb4de8718c225295b70c4d324c35e915e29e9cd01a22164962bf2f6cf15_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportproxy-rhel9@sha256:1e675c5c66a08fc992909e2d06913ea8ab1420fc6560c87f048020a5ab9d055f_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:1d8bf43099edd641ef96605e554723b312d36b1b2d81544f12f1063d7de33826_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-exportserver-rhel9@sha256:ee39b31117c8f8be67863e952683cdaf3d49cad742bd722b5abbfa6613aa28de_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:2d65599406329f5b5b81305428873638f99a937807683338091bccbda60b9cda_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-handler-rhel9@sha256:4ff11fbb4fa3fa2fd9fbc9465a4bef5934101ea2a6201d91ca34c5616aeecf45_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:23b65c6518e23b353a8679ad4b80389c8a7c35797718a8e5ba00f976c85a8c68_arm64",
"9Base-CNV-4.13:container-native-virtualization/virt-launcher-rhel9@sha256:9d7d750377de058f14baca092b7832fc756fc0b31bdf4426556b380012bd69fb_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:0b7505d513a3a5dec0ceefb1e2337c8f8c7769d1a3a45e21e3ce46f7d87b3b9b_amd64",
"9Base-CNV-4.13:container-native-virtualization/virt-operator-rhel9@sha256:e8703006f51562b0370facfca722d0064e5673db77e7a0e1edfd62418fd2847a_arm64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:0c8635ad9d5dcb052dd6a840e6a841fbafce15cbe6820878f1921652a0a7dec8_amd64",
"9Base-CNV-4.13:container-native-virtualization/virtio-win-rhel9@sha256:da9f96685d597eb80a59a99d64c4c59a5e6aa6fe042be8b6a8386bb01f6b5a4d_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:1d8b888e5c76c6de2c178d6301d6caabbc497fa3502f30731885ade2012d01b6_arm64",
"9Base-CNV-4.13:container-native-virtualization/vm-console-proxy-rhel9@sha256:527182f4a91752fe5e1d078c745c8d0763392f94b9f32a8cf2885c69a1ddbc6e_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:1526bbc64a74f9bd86c119a9f48e83f7b1d4978bb0096624d33d2dd52a2cb2b0_amd64",
"9Base-CNV-4.13:container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:9d456058997fc90c0d6acbeeaf349d33c4f6ce36509c3f68685a1be90d793b5b_arm64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023_6240
Vulnerability from csaf_redhat - Published: 2023-11-01 13:41 - Updated: 2024-12-18 04:52A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for cnf-tests-container, dpdk-base-container, performance-addon-operator-must-gather NUMA-aware secondary scheduler and numaresources-operator is now available for Red Hat OpenShift Container Platform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the extra low-latency container images for Red Hat OpenShift Container Platform 4.13. \n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform users are advised to upgrade to these updated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6240",
"url": "https://access.redhat.com/errata/RHSA-2023:6240"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6240.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13 low-latency extras security update",
"tracking": {
"current_release_date": "2024-12-18T04:52:44+00:00",
"generator": {
"date": "2024-12-18T04:52:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6240",
"initial_release_date": "2023-11-01T13:41:55+00:00",
"revision_history": [
{
"date": "2023-11-01T13:41:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T13:41:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"product": {
"name": "openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"product_id": "openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/cnf-tests-rhel8\u0026tag=v4.13.3-13"
}
}
},
{
"category": "product_version",
"name": "openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"product": {
"name": "openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"product_id": "openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/dpdk-base-rhel8\u0026tag=v4.13.3-8"
}
}
},
{
"category": "product_version",
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"product": {
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"product_id": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/noderesourcetopology-scheduler-container-rhel8\u0026tag=v4.13.3-7"
}
}
},
{
"category": "product_version",
"name": "openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"product": {
"name": "openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"product_id": "openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/numaresources-operator-bundle\u0026tag=v4.13.3-22"
}
}
},
{
"category": "product_version",
"name": "openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"product": {
"name": "openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"product_id": "openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/numaresources-rhel8-operator\u0026tag=v4.13.3-10"
}
}
},
{
"category": "product_version",
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64",
"product": {
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64",
"product_id": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/performance-addon-operator-must-gather-rhel8\u0026tag=v4.13.3-17"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64"
},
"product_reference": "openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64"
},
"product_reference": "openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64"
},
"product_reference": "openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64"
},
"product_reference": "openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64"
},
"product_reference": "openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64"
},
"product_reference": "openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64"
],
"known_not_affected": [
"8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T13:41:55+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6240"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:openshift4/cnf-tests-rhel8@sha256:f47a3291819281714e4416e3d5c29096d22230761b029895bab95dcb25499c31_amd64",
"8Base-RHOSE-4.13:openshift4/dpdk-base-rhel8@sha256:5ab04febc5ef41b10a293ba1fef03cf9adb1f067a60a473a022124cadbb0dd51_amd64",
"8Base-RHOSE-4.13:openshift4/noderesourcetopology-scheduler-container-rhel8@sha256:9e8bf8dc4ec17aa7ec4f4f668face2dcfb471ff41133cefc52fc59bef5ee9b9a_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-operator-bundle@sha256:b8b1f1486c4195c99fd899fa615257c30a8d29929482af73f5816deb41d2aff6_amd64",
"8Base-RHOSE-4.13:openshift4/numaresources-rhel8-operator@sha256:1c168573d971f3892d34047957db498545f860a92af23450903949bfa801ca4b_amd64",
"8Base-RHOSE-4.13:openshift4/performance-addon-operator-must-gather-rhel8@sha256:a85c8ccd1a092c755cdc32154fe31c1deeade95d97670218b662486b4943c84b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
}
]
}
RHSA-2023_6243
Vulnerability from csaf_redhat - Published: 2023-11-01 14:08 - Updated: 2024-12-18 04:52A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openshift-gitops-kam is now available for Red Hat OpenShift GitOps 1.10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "TODO: add package description\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6243",
"url": "https://access.redhat.com/errata/RHSA-2023:6243"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6243.json"
}
],
"title": "Red Hat Security Advisory: openshift-gitops-kam security update",
"tracking": {
"current_release_date": "2024-12-18T04:52:36+00:00",
"generator": {
"date": "2024-12-18T04:52:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6243",
"initial_release_date": "2023-11-01T14:08:03+00:00",
"revision_history": [
{
"date": "2023-11-01T14:08:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T14:08:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.10",
"product": {
"name": "Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-kam-0:1.10.1-22.el8.src",
"product": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.src",
"product_id": "openshift-gitops-kam-0:1.10.1-22.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam@1.10.1-22.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"product": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"product_id": "openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam@1.10.1-22.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64",
"product": {
"name": "openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64",
"product_id": "openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam-redistributable@1.10.1-22.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"product": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"product_id": "openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam@1.10.1-22.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"product": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"product_id": "openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam@1.10.1-22.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"product": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"product_id": "openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-gitops-kam@1.10.1-22.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.aarch64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64"
},
"product_reference": "openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.ppc64le as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le"
},
"product_reference": "openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.s390x as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x"
},
"product_reference": "openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.src as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src"
},
"product_reference": "openshift-gitops-kam-0:1.10.1-22.el8.src",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-0:1.10.1-22.el8.x86_64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64"
},
"product_reference": "openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"relates_to_product_reference": "8Base-GitOps-1.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64 as a component of Red Hat OpenShift GitOps 1.10",
"product_id": "8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64"
},
"product_reference": "openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64",
"relates_to_product_reference": "8Base-GitOps-1.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T14:08:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6243"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.aarch64",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.ppc64le",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.s390x",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.src",
"8Base-GitOps-1.10:openshift-gitops-kam-0:1.10.1-22.el8.x86_64",
"8Base-GitOps-1.10:openshift-gitops-kam-redistributable-0:1.10.1-22.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
}
]
}
RHSA-2023_6248
Vulnerability from csaf_redhat - Published: 2023-11-01 14:42 - Updated: 2024-12-18 04:53A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64 | — |
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64 | — |
Workaround
|
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Virtualization release 4.12.8 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Virtualization is Red Hat\u0027s virtualization solution designed for Red Hat OpenShift Container Platform.\n\nThis advisory contains OpenShift Virtualization 4.12.8 images.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6248",
"url": "https://access.redhat.com/errata/RHSA-2023:6248"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6248.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Virtualization 4.12.8 Images security update",
"tracking": {
"current_release_date": "2024-12-18T04:53:04+00:00",
"generator": {
"date": "2024-12-18T04:53:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6248",
"initial_release_date": "2023-11-01T14:42:20+00:00",
"revision_history": [
{
"date": "2023-11-01T14:42:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T14:42:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:53:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CNV 4.12 for RHEL 8",
"product": {
"name": "CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:container_native_virtualization:4.12::el8"
}
}
}
],
"category": "product_family",
"name": "OpenShift Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"product": {
"name": "container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"product_id": "container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/bridge-marker\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"product": {
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"product_id": "container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cluster-network-addons-operator\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"product": {
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"product_id": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-containernetworking-plugins\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"product": {
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"product_id": "container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-must-gather-rhel8\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"product": {
"name": "container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"product_id": "container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hco-bundle-registry\u0026tag=v4.12.8-17"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"product": {
"name": "container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"product_id": "container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-csi-driver\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8-operator\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-operator\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-webhook-rhel8\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"product": {
"name": "container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"product_id": "container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubemacpool\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"product_id": "container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-console-plugin\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"product_id": "container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-ssp-operator\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-copy-template\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-datavolume\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-operator\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"product_id": "container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-template-validator\u0026tag=v4.12.8-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"product": {
"name": "container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"product_id": "container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"product_identification_helper": {
"purl": "pkg:oci/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/libguestfs-tools\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"product": {
"name": "container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"product_id": "container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-marker\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"product": {
"name": "container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"product_id": "container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-plugin\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"product": {
"name": "container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"product_id": "container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-api\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"product": {
"name": "container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"product_id": "container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-artifacts-server\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"product_id": "container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-apiserver\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"product_id": "container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-cloner\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"product_id": "container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-controller\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"product_id": "container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-importer\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"product_id": "container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-operator\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadproxy\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadserver\u0026tag=v4.12.8-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"product": {
"name": "container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"product_id": "container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-controller\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"product": {
"name": "container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"product_id": "container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportproxy\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"product": {
"name": "container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"product_id": "container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-exportserver\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"product": {
"name": "container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"product_id": "container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-handler\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"product": {
"name": "container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"product_id": "container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virtio-win\u0026tag=v4.12.8-2"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"product": {
"name": "container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"product_id": "container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-launcher\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"product": {
"name": "container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"product_id": "container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-operator\u0026tag=v4.12.8-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64",
"product": {
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64",
"product_id": "container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-network-latency-checkup\u0026tag=v4.12.8-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64"
},
"product_reference": "container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64"
},
"product_reference": "container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64"
},
"product_reference": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64"
},
"product_reference": "container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64"
},
"product_reference": "container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64"
},
"product_reference": "container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64"
},
"product_reference": "container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64"
},
"product_reference": "container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64"
},
"product_reference": "container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64"
},
"product_reference": "container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64"
},
"product_reference": "container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64"
},
"product_reference": "container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64"
},
"product_reference": "container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64"
},
"product_reference": "container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64"
},
"product_reference": "container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64"
},
"product_reference": "container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64"
},
"product_reference": "container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64"
},
"product_reference": "container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64"
},
"product_reference": "container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64 as a component of CNV 4.12 for RHEL 8",
"product_id": "8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
},
"product_reference": "container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64",
"relates_to_product_reference": "8Base-CNV-4.12"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64"
],
"known_not_affected": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T14:42:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6248"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
],
"known_not_affected": [
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T14:42:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6248"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64"
],
"known_not_affected": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T14:42:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6248"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.12:container-native-virtualization/bridge-marker@sha256:23d0f2055443e81079ef82573ff23539ff03bc0a57912638b80fdf24d6e74b4f_amd64",
"8Base-CNV-4.12:container-native-virtualization/cluster-network-addons-operator@sha256:c9106a0cdf723043ad2e94fe746d084ffb4cdf50292763922389acafb6d1abf7_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-containernetworking-plugins@sha256:b60bc0fd0988c23c1224280c9b63e98d5b77998f0ed24e12a55158da8971ae4d_amd64",
"8Base-CNV-4.12:container-native-virtualization/cnv-must-gather-rhel8@sha256:74ff80f2d32a0d1dd58c7ac63cc2c5792146e3bc2a65b57727e172e0da8ed994_amd64",
"8Base-CNV-4.12:container-native-virtualization/hco-bundle-registry@sha256:dddf77c42a60a2837388448d294a65719281984009708a1d90ce328c3d95aa28_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-csi-driver@sha256:6b9c72bfb44b3ed66ffbe7785bfa44d81bed9b5c802e8f664d5bd129789a108a_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:97a53da9d0aa186d8120558b071c8a609db2e9fdf55e88780c4df4a96d1e7fb9_amd64",
"8Base-CNV-4.12:container-native-virtualization/hostpath-provisioner-rhel8@sha256:a6c27e3bdbf23952f0eacb1be73c14eabb02b9e6ed12ac2f1fa3f386de11ed8c_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-operator@sha256:5fbe17bcbbf20acae781c4fbdde81d1d53469f276b217a9a0339baae8c28a442_amd64",
"8Base-CNV-4.12:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3b73aae81279eb9fc9354a141230a2ae2ffaf767ec430653ceef9e8a6f5b2578_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubemacpool@sha256:a63b4835f1e1afc3d5da3b80526e494ace5fe6917a51526648b9b1228168f552_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-console-plugin@sha256:861fb3b8d3b009f5dda71338f5dc340081e4501cc38af55c8d03a1c00378c6a3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-ssp-operator@sha256:8218a9b29aaa5bdcddc4b67256c802fc555fc2b96fc2045671d9a62faa0517e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:a530fcc39c11350dabf592c52288a44521f639a91716afe40c31f676a0287eb2_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:b9f5f854305f631dd893995365e92ecb6a20085c84cab124bd5a1f715bbf110b_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:1fbad55cf897a63ba992609d0b966d1a15ea33c65772a89d3ed03cc565c88ff3_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:420a2f4a5ccf17d354945725efd872ce48042afb02f9446348d95086f6c074e6_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:aa24caef43563243aa45e2146a9be4ebe15a55e7d47cd043d0a2e1094d4662bb_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:0cb042eb4f9f6c8d1436d010eb9691ceb5c02f0f273ae458780ad92727f45908_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:6337cb6e7978d8622f6948f81bd927ba97265baaedf3c527bf2b0bc9d33fd7af_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:108b0a434e22eb7837b225f711d63303a08193d8af3883522c992d6486c26353_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:4b393bbab7a0da4574a285ec365da0559e137e55c28b88ec9f4c7b75a0bde133_amd64",
"8Base-CNV-4.12:container-native-virtualization/kubevirt-template-validator@sha256:053df4781a11f4353e06fcc7b12e8fb81a52b7bccab5f8a6c98f56947d05c270_amd64",
"8Base-CNV-4.12:container-native-virtualization/libguestfs-tools@sha256:9b0649921289b2484e05760c81890262cae75d9cbac2764ec258b57fa3b7e605_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-marker@sha256:43a216c37d6ff86c2ac963f64022e1b4c475a64cb681bb504879caf70f8688df_amd64",
"8Base-CNV-4.12:container-native-virtualization/ovs-cni-plugin@sha256:dc55c6e82516b8fc6b80b858cc9c308384998b8bb578252ca25e919e3fcf7c08_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-api@sha256:8a8079e2bed79b5d18796db8ba44d56610b68544974e55c851b0116997b82414_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-artifacts-server@sha256:383022adea0838abf0e7394b95059b995e616427eed4fff1e65d125c14c0a7e5_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-apiserver@sha256:10c4bb9ad748bac9b04ef16f542941a67a4c78d8dd4069c8f5cbade859ae3dba_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-cloner@sha256:fba428882b1637778d373ebd4c86842235fad5115334110e5d41514ccfde64c6_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-controller@sha256:97208eac253cb235dd67214dc6e8bdc5335f438250b662c4ba30fb6735ea6ecb_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-importer@sha256:7296bc1fc028558ad2c011b3a4ea66e2f058c2d0c0ca128703699ea40ad12ac2_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-operator@sha256:8c17826aa039376a4a50f9a2db48b3f2797b14b915aa069826f4278182fb5e22_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadproxy@sha256:c980ef56b6e73b9f7e76b05b61a245d891465c3ce6a779591ef9bffa79aaa2f8_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-cdi-uploadserver@sha256:42e669ed714ce412b299d52edf016d478c715127916846265cc48342d9e9fcb4_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-controller@sha256:c7ef9a1f3dcd6ba257b3f6a5431cf8cce5809a4b76fa14523c65b45af995bc40_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportproxy@sha256:4b4fe7649612d6230cac655ae7ca5e2c4b2817911bdac9d9b1d53b233d7a4a72_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-exportserver@sha256:13a1fd0199c6af5555c7a357f495b160304a67fc680dc57fde1dea98a6a08e67_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-handler@sha256:cc93189523fcc3eb3f023a576eb9501234d5d862fb91136ae16e631b0abcbe29_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-launcher@sha256:d58d3f87c690066148fd32f4549b1df516a4085bf6bdb8de4abcd033047cf6a0_amd64",
"8Base-CNV-4.12:container-native-virtualization/virt-operator@sha256:c2daeb82867dd85031ec6bb2251f9ba7e6a3961ad89c59d96c4d223e7856824c_amd64",
"8Base-CNV-4.12:container-native-virtualization/virtio-win@sha256:da501d80839308b9603eaf8fdc99cdb8f67a4c25e67b3897a162b54e7d113826_amd64",
"8Base-CNV-4.12:container-native-virtualization/vm-network-latency-checkup@sha256:f33051f5c6ac1c7f3098e48b5388fde6c11830136641802d77a8e433cfd942fa_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023_6251
Vulnerability from csaf_redhat - Published: 2023-11-01 16:14 - Updated: 2024-12-18 04:52A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64 | — | ||
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64 | — |
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64 | — |
Workaround
|
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Virtualization release 4.11.7 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Virtualization is Red Hat\u0027s virtualization solution designed for Red Hat OpenShift Container Platform.\n\nThis advisory contains OpenShift Virtualization 4.11.7 images.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* 4.11.7 containers (BZ#2246329)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6251",
"url": "https://access.redhat.com/errata/RHSA-2023:6251"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "2246329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246329"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6251.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Virtualization 4.11.7 Images security and bug fix update",
"tracking": {
"current_release_date": "2024-12-18T04:52:55+00:00",
"generator": {
"date": "2024-12-18T04:52:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6251",
"initial_release_date": "2023-11-01T16:14:42+00:00",
"revision_history": [
{
"date": "2023-11-01T16:14:42+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-01T16:14:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:52:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CNV 4.11 for RHEL 8",
"product": {
"name": "CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:container_native_virtualization:4.11::el8"
}
}
}
],
"category": "product_family",
"name": "OpenShift Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"product": {
"name": "container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"product_id": "container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/bridge-marker\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"product": {
"name": "container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"product_id": "container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/checkup-framework\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"product": {
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"product_id": "container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cluster-network-addons-operator\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"product": {
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"product_id": "container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-containernetworking-plugins\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"product": {
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"product_id": "container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-must-gather-rhel8\u0026tag=v4.11.7-10"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"product": {
"name": "container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"product_id": "container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hco-bundle-registry\u0026tag=v4.11.7-35"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product": {
"name": "container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product_id": "container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-csi-driver\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product_id": "container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-csi-driver-rhel8\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"product": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"product_id": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8-operator\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-operator\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"product": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"product_id": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-webhook-rhel8\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"product": {
"name": "container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"product_id": "container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubemacpool\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"product_id": "container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-console-plugin\u0026tag=v4.11.7-7"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"product_id": "container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-ssp-operator\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-copy-template\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-datavolume\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-operator\u0026tag=v4.11.7-6"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"product_id": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status\u0026tag=v4.11.7-12"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"product": {
"name": "container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"product_id": "container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-template-validator\u0026tag=v4.11.7-3"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"product": {
"name": "container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"product_id": "container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/libguestfs-tools\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"product": {
"name": "container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"product_id": "container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-marker\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"product": {
"name": "container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"product_id": "container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-plugin\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"product": {
"name": "container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"product_id": "container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-api\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"product": {
"name": "container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"product_id": "container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-artifacts-server\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"product_id": "container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-apiserver\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"product_id": "container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-cloner\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"product_id": "container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-controller\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"product_id": "container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-importer\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"product_id": "container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-operator\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadproxy\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"product": {
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"product_id": "container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadserver\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"product": {
"name": "container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"product_id": "container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-controller\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"product": {
"name": "container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"product_id": "container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-handler\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"product": {
"name": "container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"product_id": "container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virtio-win\u0026tag=v4.11.7-4"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"product": {
"name": "container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"product_id": "container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-launcher\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"product": {
"name": "container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"product_id": "container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-operator\u0026tag=v4.11.7-5"
}
}
},
{
"category": "product_version",
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64",
"product": {
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64",
"product_id": "container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-network-latency-checkup\u0026tag=v4.11.7-5"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64"
},
"product_reference": "container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64"
},
"product_reference": "container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64"
},
"product_reference": "container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64"
},
"product_reference": "container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64"
},
"product_reference": "container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64"
},
"product_reference": "container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64"
},
"product_reference": "container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64"
},
"product_reference": "container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64"
},
"product_reference": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64"
},
"product_reference": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64"
},
"product_reference": "container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64"
},
"product_reference": "container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64"
},
"product_reference": "container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64"
},
"product_reference": "container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64"
},
"product_reference": "container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64"
},
"product_reference": "container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64"
},
"product_reference": "container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64"
},
"product_reference": "container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64"
},
"product_reference": "container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64"
},
"product_reference": "container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64"
},
"product_reference": "container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64"
},
"product_reference": "container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64"
},
"product_reference": "container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64 as a component of CNV 4.11 for RHEL 8",
"product_id": "8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
},
"product_reference": "container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64",
"relates_to_product_reference": "8Base-CNV-4.11"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64"
],
"known_not_affected": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T16:14:42+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6251"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
],
"known_not_affected": [
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T16:14:42+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6251"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64"
],
"known_not_affected": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-01T16:14:42+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6251"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-CNV-4.11:container-native-virtualization/bridge-marker@sha256:6ec0d63868d6c69891b96338782db6ddefb6eeeb155a8b316112cfa3b756885c_amd64",
"8Base-CNV-4.11:container-native-virtualization/checkup-framework@sha256:7a9443d47b8f954670ff3a8f0196f26a3a7bb4b16d2c3469a22d01172f31fc26_amd64",
"8Base-CNV-4.11:container-native-virtualization/cluster-network-addons-operator@sha256:bf77cbd3fa96da043778f1f27ccf009097f53a46ca1584b440a15623a6edde88_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-containernetworking-plugins@sha256:d34dbb657cb4a631ccca5687f05a9387d679cf03d9899c0843b4f1733ee64103_amd64",
"8Base-CNV-4.11:container-native-virtualization/cnv-must-gather-rhel8@sha256:575bce5098573be251955aca405570171a458f6993d6735aa39b52012dd0320c_amd64",
"8Base-CNV-4.11:container-native-virtualization/hco-bundle-registry@sha256:d2530174f8d682e186b1be97d1e567927c1aaaa7fe5fa1f83eb826608515dccc_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver-rhel8@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-csi-driver@sha256:20488cf9f269a34be9a3d82e04a28b598b26be0a495f51a47a8dba02f7e9d974_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d0755533e714fde9377688064f67e3949d94db4307c36b16d9e4990caa2080b6_amd64",
"8Base-CNV-4.11:container-native-virtualization/hostpath-provisioner-rhel8@sha256:6a49eb5fa0d5d85d028753ccfda32c66c0d26f1d6bd4d264f0d7f1af7887e131_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-operator@sha256:5d446416c7c4ac98bf24b5c0bf7631e7feb55ebb898aedace28f8484ae628cf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:3f8b6e4d39648595a62b087f49b9a8e8844bf2f9a743e32db69bdcc491831b55_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubemacpool@sha256:cfb161f31bc459f160a31cf9ad4ec8f0d7ee9140c13b8ba2e6477cdb971f6384_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-console-plugin@sha256:3ff40d3759ea6c50aeb143a5aff6f798611267452eb8111361ef9e0a89260bf5_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-ssp-operator@sha256:81fa9feb8418ebf53d9e386fc98a8ee45fd83c30496e3574626449ab19a10236_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm@sha256:8c7d9751d790df2471a9e8606afcb2880b800ec713a089b2a801df247a0f3fec_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-copy-template@sha256:f4b0b6daf093a75fcd8d4cc61496a316f86899e8ce4217e9f761def5f9d0e794_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-datavolume@sha256:33a16329639f805c0d75a0ed6fe699755938f602230104715c0ad3b545aaf7fa_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template@sha256:caed594ab506d7cf550130d927b68bdcfb3707b8464f2d18da468d9b884c3017_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize@sha256:4980e6eeadf62bedffff98982f0f5b5e426b0ab01867057dba027e87f9557ce4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep@sha256:254f671bc0443d32ba60cfafa4ed4592c2030270b160c1e7b1d302d797bd9a82_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template@sha256:69ceb3d47f3c8c32abcca8ec5ad7ebce42ce64e8200f77c1b829c2cb5495c478_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-operator@sha256:ec2ac2bedd9f14ff0fbdfe3844d67f1361d59eb379ef6dfcd0fa5727635bdea4_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status@sha256:a1fac42b6bf868c20ad974a0409cd62e68be20ea9e4ca5ff4ebc211bb9dc85ab_amd64",
"8Base-CNV-4.11:container-native-virtualization/kubevirt-template-validator@sha256:47b866156816f285cf7ea8b8d523e2ec84bc58751e1d593e98bf8ab493c8db09_amd64",
"8Base-CNV-4.11:container-native-virtualization/libguestfs-tools@sha256:0547ff01b9717560fd81ce291acc4b3e70098df3b80d42d35ec2b563b0ce035a_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-marker@sha256:7c44a0d3bb352c0327974ccb3c2054c6cff88fa58399b1e40409e197ad78d585_amd64",
"8Base-CNV-4.11:container-native-virtualization/ovs-cni-plugin@sha256:4eb3e9b62fa09edc3e678fa0afad10b8e1042fb95ddecaca7a48e79c392b3029_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-api@sha256:fd9dd050e1670ffd7f1816ebcced2a77a51aa4bbf96bec893f8b7e84b3824763_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-artifacts-server@sha256:bedf2d810c355505de7b2dcb24b27d04b0ab94d3adc711d942ee830c71ff49a3_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-apiserver@sha256:de581a993f71f57bced78261962524b1e1eaaf8f6c89549735475fad3b997093_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-cloner@sha256:9c5ac022e709ac0ecd77814138639b3b9e6d34fa9f98bc3ce4127b1d68af29f2_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-controller@sha256:192f40ae9ba79582d0f9ac7ca7f1eb1f8c44abd7c79345bd579807cc94a883f0_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-importer@sha256:ce436ec0a51e51ba209da49d6d877c7e07faf264b966849934c72d1c031a78dd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-operator@sha256:1b503bfc4177444b360c4a1a470ac8322d3394fd9e8ebe7f2bad849249d2c6fd_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadproxy@sha256:fc0aafe98acf811a0e94091a6dcec5f465ddc64e279ad250f6c8fa4225de7c7f_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-cdi-uploadserver@sha256:029992238c9723c2760d24d502b95d22a46f3a1586e076da54863fc22f9cca35_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-controller@sha256:3c80a72772b98e46fc1382c3dc6a7b8a41f50e8bde5a12362a121e1dd1d2cc64_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-handler@sha256:841aca720b7082e72059f733ead2e02915e6ead7506d79ac6eff0b143390713e_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-launcher@sha256:1480ad0874186f451bd95b51953940ad7589c2546715770be1b61f3e8dec3ea9_amd64",
"8Base-CNV-4.11:container-native-virtualization/virt-operator@sha256:8dc7b78fea1006af9bb0d62120b50964e2fc73ee049a0efe94d366aad296ab95_amd64",
"8Base-CNV-4.11:container-native-virtualization/virtio-win@sha256:58f2d6b9b41d6a0af3a20d2ce491f2c2bf8b3f07b6ea0170b729f0db0626c21d_amd64",
"8Base-CNV-4.11:container-native-virtualization/vm-network-latency-checkup@sha256:9d28ad64ab3d2858ce9b1144a77816cc1ae07f53b37599fc24609a9429c0a0b8_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023_6256
Vulnerability from csaf_redhat - Published: 2023-11-08 08:40 - Updated: 2024-12-18 04:53A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.13.21 is now available with updates to packages and images that fix several bugs.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThere are no RPM packages for this update.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (Rapid Reset Attack) (CVE-2023-39325)\n\nA Red Hat Security Bulletin which addresses further details about the Rapid Reset flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6256",
"url": "https://access.redhat.com/errata/RHSA-2023:6256"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6256.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13.21 security and extras update",
"tracking": {
"current_release_date": "2024-12-18T04:53:14+00:00",
"generator": {
"date": "2024-12-18T04:53:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6256",
"initial_release_date": "2023-11-08T08:40:09+00:00",
"revision_history": [
{
"date": "2023-11-08T08:40:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-08T08:40:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:53:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"product": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"product_id": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-openshift-proxy-pull-test-rhel8\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"product_id": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel8-operator\u0026tag=v4.13.0-202310271044.p0.g5a180bd.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product_id": "openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-tech-preview/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product": {
"name": "openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product_id": "openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"product": {
"name": "openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"product_id": "openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8-operator\u0026tag=v4.13.0-202310252244.p0.g3840903.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"product": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"product_id": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-openshift-proxy-pull-test-rhel8\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"product_id": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel8-operator\u0026tag=v4.13.0-202310271044.p0.g5a180bd.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product_id": "openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-tech-preview/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product": {
"name": "openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product_id": "openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"product": {
"name": "openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"product_id": "openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8-operator\u0026tag=v4.13.0-202310252244.p0.g3840903.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"product_id": "openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller\u0026tag=v4.13.0-202310270844.p0.g88143b9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"product_id": "openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-operator\u0026tag=v4.13.0-202310270844.p0.g04f97d5.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"product": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"product_id": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-openshift-proxy-pull-test-rhel8\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel8-operator\u0026tag=v4.13.0-202310271044.p0.g5a180bd.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product_id": "openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224?arch=amd64\u0026repository_url=registry.redhat.io/openshift-tech-preview/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product": {
"name": "openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product_id": "openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"product": {
"name": "openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"product_id": "openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8-operator\u0026tag=v4.13.0-202310252244.p0.g3840903.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"product_id": "openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller\u0026tag=v4.13.0-202310270844.p0.g88143b9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"product": {
"name": "openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"product_id": "openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-operator\u0026tag=v4.13.0-202310270844.p0.g04f97d5.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"product": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"product_id": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-openshift-proxy-pull-test-rhel8\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel8-operator\u0026tag=v4.13.0-202310271044.p0.g5a180bd.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product_id": "openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-tech-preview/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product": {
"name": "openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product_id": "openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8\u0026tag=v4.13.0-202310252244.p0.ge0118ad.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"product": {
"name": "openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"product_id": "openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel8-operator\u0026tag=v4.13.0-202310252244.p0.g3840903.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"product_id": "openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller\u0026tag=v4.13.0-202310270844.p0.g88143b9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64",
"product": {
"name": "openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64",
"product_id": "openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-operator\u0026tag=v4.13.0-202310270844.p0.g04f97d5.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64"
},
"product_reference": "openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64"
},
"product_reference": "openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x"
},
"product_reference": "openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le"
},
"product_reference": "openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x"
},
"product_reference": "openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64"
},
"product_reference": "openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le"
},
"product_reference": "openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64"
},
"product_reference": "openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64"
},
"product_reference": "openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64"
},
"product_reference": "openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x"
},
"product_reference": "openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le"
},
"product_reference": "openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x"
},
"product_reference": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le"
},
"product_reference": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64"
},
"product_reference": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64"
},
"product_reference": "openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64"
},
"product_reference": "openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64"
},
"product_reference": "openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64"
],
"known_not_affected": [
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-08T08:40:09+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html",
"product_ids": [
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6256"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift-tech-preview/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:24c1848eb66e1045c93dd01a2e9782e0d4dbaf7e9043c86e0f9610c498c9bb9a_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:2967a22f31c6bf713683085d95c4993d178f7263eb135db13b370544b1f041ed_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:ce4a5d7f767411f3eab5514e76f6602a7a0041bfa51b57e55e45f835fb56aaaf_ppc64le",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8-operator@sha256:f02a03ca21a69f74413da5c7a72a6aa35502b1fbd3666eb27594c622a031773d_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:05081f1f284ceb4b26f9e4874d8a6d76cd8cca5acf28ab7e067ffa6a4a483224_amd64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:07f3e521eb6cc30b852a4cc8b5fbb2899a9a52bb84d247ade26f6b0cc838dfe9_arm64",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:5420cd1f7d913cbc5041e96ffe4b1bc221efceb1af46db36ddd5e5c1871b8ea5_s390x",
"8Base-RHOSE-4.13:openshift4/metallb-rhel8@sha256:892336754509e4cbfa9b0c59bbfb36e5d951d27151a964abc3ec48c8d9fbcd80_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:0c5c3d96fb009e37b33807ccd70424e6963c14fafcccd1ce393d01d43557c4f7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:43bcc7a641e5bc43f0f45a53878404f27f4c5a1c5626f7659476ae11c95025c2_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:54ba9cb5e248aa86afb3b1cc234a9d08f4b3e0f4b8952a7fd73669b53afbac02_amd64",
"8Base-RHOSE-4.13:openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:ed8bd7a2df389dcf280c603b17d84d6dd6f1317cf8c25e3ff3669931dad446d6_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:107a05cd3e21954f0bd89faab4763498ddd32b1d6a64aa4210ced437a61f600b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:280a1d664e1e0069baa255a7333334103619a7027e75a70e4d901f53613f9e71_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:acaa5f1c59cf5781a5345847e9678a3ae0adeef4bded5c5957c83c869a60afe0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openshift-proxy-pull-test-rhel8@sha256:cee05a72f77765261166bfffb2d6acbd19a28c6eb3fed55bba38919544ec1f5d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:083fe6661c61e898a677d105a2d2281ba48fcc3adf14d4586f06bb2bb8e6fd1a_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:27d5453c102aeb8bc09235a2bfb1f48d46668c2d76fc939998f68803eca97913_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-dp-admission-controller@sha256:52c1ade7bfb4ddc6fd1a0f7e33b6135313b4ceaae660e895b99c6e98082114ae_arm64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:1a5e2c023729824e5e4305ec74982370a20e6b475cf9946f4e026f73e6319cb7_amd64",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:2a44887cb1f28a928e47ec52188ab35ac3facf1fdbb519fdfbc7c73d2e411afe_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-sriov-network-operator@sha256:799958317ee505b1ea8bb6ba274745054815da8ae51c6709a20e6da821336b1b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
}
]
}
RHSA-2023_6257
Vulnerability from csaf_redhat - Published: 2023-11-08 08:43 - Updated: 2024-12-18 04:53A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.13.21 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.13.21. There are no RPM packages for this update.\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (Rapid Reset Attack) (CVE-2023-39325)\n\nA Red Hat Security Bulletin which addresses further details about the Rapid Reset flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6257",
"url": "https://access.redhat.com/errata/RHSA-2023:6257"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "OCPBUGS-11604",
"url": "https://issues.redhat.com/browse/OCPBUGS-11604"
},
{
"category": "external",
"summary": "OCPBUGS-11926",
"url": "https://issues.redhat.com/browse/OCPBUGS-11926"
},
{
"category": "external",
"summary": "OCPBUGS-13330",
"url": "https://issues.redhat.com/browse/OCPBUGS-13330"
},
{
"category": "external",
"summary": "OCPBUGS-14344",
"url": "https://issues.redhat.com/browse/OCPBUGS-14344"
},
{
"category": "external",
"summary": "OCPBUGS-18284",
"url": "https://issues.redhat.com/browse/OCPBUGS-18284"
},
{
"category": "external",
"summary": "OCPBUGS-18468",
"url": "https://issues.redhat.com/browse/OCPBUGS-18468"
},
{
"category": "external",
"summary": "OCPBUGS-18698",
"url": "https://issues.redhat.com/browse/OCPBUGS-18698"
},
{
"category": "external",
"summary": "OCPBUGS-22299",
"url": "https://issues.redhat.com/browse/OCPBUGS-22299"
},
{
"category": "external",
"summary": "OCPBUGS-22333",
"url": "https://issues.redhat.com/browse/OCPBUGS-22333"
},
{
"category": "external",
"summary": "OCPBUGS-22390",
"url": "https://issues.redhat.com/browse/OCPBUGS-22390"
},
{
"category": "external",
"summary": "OCPBUGS-22402",
"url": "https://issues.redhat.com/browse/OCPBUGS-22402"
},
{
"category": "external",
"summary": "OCPBUGS-22412",
"url": "https://issues.redhat.com/browse/OCPBUGS-22412"
},
{
"category": "external",
"summary": "OCPBUGS-2812",
"url": "https://issues.redhat.com/browse/OCPBUGS-2812"
},
{
"category": "external",
"summary": "OCPBUGS-7652",
"url": "https://issues.redhat.com/browse/OCPBUGS-7652"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6257.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13.21 bug fix and security update",
"tracking": {
"current_release_date": "2024-12-18T04:53:23+00:00",
"generator": {
"date": "2024-12-18T04:53:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6257",
"initial_release_date": "2023-11-08T08:43:21+00:00",
"revision_history": [
{
"date": "2023-11-08T08:43:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-08T08:43:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:53:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"product": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"product_id": "openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-monitoring-operator\u0026tag=v4.13.0-202311011230.p0.g31e155a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"product": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"product_id": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-node-tuning-rhel9-operator\u0026tag=v4.13.0-202310311545.p0.g06a37e8.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"product": {
"name": "openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"product_id": "openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-coredns\u0026tag=v4.13.0-202310291244.p0.gad0cf54.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"product": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"product_id": "openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-alertmanager\u0026tag=v4.13.0-202310311001.p0.gdf2f11e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"product": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"product_id": "openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-node-exporter\u0026tag=v4.13.0-202310311329.p0.g59d699c.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"product": {
"name": "openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"product_id": "openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus\u0026tag=v4.13.0-202310301306.p0.gc1fb92f.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"product": {
"name": "openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"product_id": "openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-console-operator\u0026tag=v4.13.0-202311011127.p0.g7693846.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"product": {
"name": "openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"product_id": "openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-haproxy-router\u0026tag=v4.13.0-202310270726.p0.g431a6e6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"product": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"product_id": "openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/cloud-network-config-controller-rhel8\u0026tag=v4.13.0-202310311930.p0.g78d453a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"product": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"product_id": "openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-authentication-operator\u0026tag=v4.13.0-202310301547.p0.g2c226ab.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"product": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"product_id": "openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-ingress-operator\u0026tag=v4.13.0-202310271902.p0.g5379ce1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"product": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"product_id": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-controller-manager-operator\u0026tag=v4.13.0-202310311131.p0.g5dcd222.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"product": {
"name": "openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"product_id": "openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-samples-operator\u0026tag=v4.13.0-202310261844.p0.gbcc08e9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"product": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"product_id": "openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-insights-rhel8-operator\u0026tag=v4.13.0-202310311831.p0.gb819d8e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"product": {
"name": "openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"product_id": "openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-machine-config-operator\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"product": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"product_id": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator\u0026tag=v4.13.0-202310260845.p0.gb50a649.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"product": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"product_id": "openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-monitoring-operator\u0026tag=v4.13.0-202311011230.p0.g31e155a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le",
"product": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le",
"product_id": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-node-tuning-rhel9-operator\u0026tag=v4.13.0-202310311545.p0.g06a37e8.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"product": {
"name": "openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"product_id": "openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-coredns\u0026tag=v4.13.0-202310291244.p0.gad0cf54.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"product": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"product_id": "openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-alertmanager\u0026tag=v4.13.0-202310311001.p0.gdf2f11e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"product": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"product_id": "openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-node-exporter\u0026tag=v4.13.0-202310311329.p0.g59d699c.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"product": {
"name": "openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"product_id": "openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus\u0026tag=v4.13.0-202310301306.p0.gc1fb92f.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"product": {
"name": "openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"product_id": "openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-console-operator\u0026tag=v4.13.0-202311011127.p0.g7693846.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"product": {
"name": "openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"product_id": "openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-haproxy-router\u0026tag=v4.13.0-202310270726.p0.g431a6e6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"product": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"product_id": "openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/cloud-network-config-controller-rhel8\u0026tag=v4.13.0-202310311930.p0.g78d453a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"product": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"product_id": "openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-authentication-operator\u0026tag=v4.13.0-202310301547.p0.g2c226ab.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"product": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"product_id": "openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-ingress-operator\u0026tag=v4.13.0-202310271902.p0.g5379ce1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"product": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"product_id": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-controller-manager-operator\u0026tag=v4.13.0-202310311131.p0.g5dcd222.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"product": {
"name": "openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"product_id": "openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-samples-operator\u0026tag=v4.13.0-202310261844.p0.gbcc08e9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"product": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"product_id": "openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-insights-rhel8-operator\u0026tag=v4.13.0-202310311831.p0.gb819d8e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"product": {
"name": "openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"product_id": "openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-machine-config-operator\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"product": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"product_id": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator\u0026tag=v4.13.0-202310260845.p0.gb50a649.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"product": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"product_id": "openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-monitoring-operator\u0026tag=v4.13.0-202311011230.p0.g31e155a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"product": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"product_id": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-node-tuning-rhel9-operator\u0026tag=v4.13.0-202310311545.p0.g06a37e8.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"product": {
"name": "openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"product_id": "openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-coredns\u0026tag=v4.13.0-202310291244.p0.gad0cf54.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"product": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"product_id": "openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-alertmanager\u0026tag=v4.13.0-202310311001.p0.gdf2f11e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"product": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"product_id": "openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-node-exporter\u0026tag=v4.13.0-202310311329.p0.g59d699c.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"product": {
"name": "openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"product_id": "openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus\u0026tag=v4.13.0-202310301306.p0.gc1fb92f.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"product": {
"name": "openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"product_id": "openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-console-operator\u0026tag=v4.13.0-202311011127.p0.g7693846.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"product": {
"name": "openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"product_id": "openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-haproxy-router\u0026tag=v4.13.0-202310270726.p0.g431a6e6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"product": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"product_id": "openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/cloud-network-config-controller-rhel8\u0026tag=v4.13.0-202310311930.p0.g78d453a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"product": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"product_id": "openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-authentication-operator\u0026tag=v4.13.0-202310301547.p0.g2c226ab.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"product": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"product_id": "openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-ingress-operator\u0026tag=v4.13.0-202310271902.p0.g5379ce1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"product": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"product_id": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-controller-manager-operator\u0026tag=v4.13.0-202310311131.p0.g5dcd222.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"product": {
"name": "openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"product_id": "openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-samples-operator\u0026tag=v4.13.0-202310261844.p0.gbcc08e9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"product": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"product_id": "openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-insights-rhel8-operator\u0026tag=v4.13.0-202310311831.p0.gb819d8e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"product": {
"name": "openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"product_id": "openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-machine-config-operator\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"product": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"product_id": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator\u0026tag=v4.13.0-202310260845.p0.gb50a649.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"product": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"product_id": "openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-monitoring-operator\u0026tag=v4.13.0-202311011230.p0.g31e155a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"product": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"product_id": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-node-tuning-rhel9-operator\u0026tag=v4.13.0-202310311545.p0.g06a37e8.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"product": {
"name": "openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"product_id": "openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-coredns\u0026tag=v4.13.0-202310291244.p0.gad0cf54.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"product": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"product_id": "openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-alertmanager\u0026tag=v4.13.0-202310311001.p0.gdf2f11e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"product": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"product_id": "openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-node-exporter\u0026tag=v4.13.0-202310311329.p0.g59d699c.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"product": {
"name": "openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"product_id": "openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus\u0026tag=v4.13.0-202310301306.p0.gc1fb92f.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"product": {
"name": "openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"product_id": "openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-console-operator\u0026tag=v4.13.0-202311011127.p0.g7693846.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"product": {
"name": "openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"product_id": "openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-haproxy-router\u0026tag=v4.13.0-202310270726.p0.g431a6e6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"product": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"product_id": "openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/cloud-network-config-controller-rhel8\u0026tag=v4.13.0-202310311930.p0.g78d453a.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"product": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"product_id": "openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-authentication-operator\u0026tag=v4.13.0-202310301547.p0.g2c226ab.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"product": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"product_id": "openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-ingress-operator\u0026tag=v4.13.0-202310271902.p0.g5379ce1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"product": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"product_id": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-controller-manager-operator\u0026tag=v4.13.0-202310311131.p0.g5dcd222.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"product": {
"name": "openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"product_id": "openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-samples-operator\u0026tag=v4.13.0-202310261844.p0.gbcc08e9.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"product": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"product_id": "openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-insights-rhel8-operator\u0026tag=v4.13.0-202310311831.p0.gb819d8e.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"product": {
"name": "openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"product_id": "openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-machine-config-operator\u0026tag=v4.13.0-202310271902.p0.g935b199.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"product": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"product_id": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-openstack-cinder-csi-driver-rhel8-operator\u0026tag=v4.13.0-202310260845.p0.gb50a649.assembly.stream"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64"
},
"product_reference": "openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le"
},
"product_reference": "openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x"
},
"product_reference": "openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64"
},
"product_reference": "openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64"
},
"product_reference": "openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64"
},
"product_reference": "openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le"
},
"product_reference": "openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x"
},
"product_reference": "openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x"
},
"product_reference": "openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64"
},
"product_reference": "openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64"
},
"product_reference": "openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le"
},
"product_reference": "openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64"
},
"product_reference": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x"
},
"product_reference": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le"
},
"product_reference": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64"
},
"product_reference": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64"
},
"product_reference": "openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x"
},
"product_reference": "openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le"
},
"product_reference": "openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64"
},
"product_reference": "openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x"
},
"product_reference": "openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64"
},
"product_reference": "openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le"
},
"product_reference": "openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64"
},
"product_reference": "openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x"
},
"product_reference": "openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64"
},
"product_reference": "openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le"
},
"product_reference": "openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64"
},
"product_reference": "openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x"
},
"product_reference": "openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le"
},
"product_reference": "openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64"
},
"product_reference": "openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64"
},
"product_reference": "openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64"
},
"product_reference": "openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x"
},
"product_reference": "openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64"
},
"product_reference": "openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le"
},
"product_reference": "openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le"
},
"product_reference": "openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x"
},
"product_reference": "openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64"
},
"product_reference": "openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64"
},
"product_reference": "openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64"
},
"product_reference": "openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64"
},
"product_reference": "openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x"
},
"product_reference": "openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le"
},
"product_reference": "openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64"
},
"product_reference": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le"
},
"product_reference": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64"
},
"product_reference": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x"
},
"product_reference": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le"
},
"product_reference": "openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64"
},
"product_reference": "openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64"
},
"product_reference": "openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x"
},
"product_reference": "openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64"
},
"product_reference": "openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le"
},
"product_reference": "openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x"
},
"product_reference": "openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64"
},
"product_reference": "openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le"
},
"product_reference": "openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64"
},
"product_reference": "openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64"
},
"product_reference": "openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x"
},
"product_reference": "openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x"
},
"product_reference": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64"
},
"product_reference": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64"
},
"product_reference": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le"
},
"product_reference": "openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x"
],
"known_not_affected": [
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-08T08:43:21+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\n https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are\n\n (For x86_64 architecture)\n The image digest is sha256:562c214e9662e3684ac5b8c3d5d2759a83f544da8897a00ebe91a02fcad6d2d9\n\n (For s390x architecture)\n The image digest is sha256:31eb6fe82af60cf8693bf986d6db6d26cbb26950eb63401b2e6c2c19eb54c2b6\n\n (For ppc64le architecture)\n The image digest is sha256:0cc5f401894fafcf40653ff631edce27297f598546235e6107e100f9b4798f3a\n\n (For aarch64 architecture)\n The image digest is sha256:f0c0bad639693279314010424aba2abb76ba5f8f45ff1b40d4f8936c589e2e0e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6257"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3810956951c1988979ac24659c56ba6ec17e09054b6ce85abc4b14e670fc9cf6_arm64",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:3b3a2a764de073fc154cf4e857a369c91ecfb5e6c42a6f0e099c5c50b332dd27_ppc64le",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:ce7b75eeb28e81e488f12c8836d3e5bd3d9311ff714ee9202d051a473ec0fa9f_s390x",
"8Base-RHOSE-4.13:openshift4/cloud-network-config-controller-rhel8@sha256:d4dfbb9e94e39d2f9e5542367a04cadce0ca5f7dfd9b15c5f2a97fd30688af2b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:0ccc78a5bee86470de92084ef0d667741d4a342f89907083d66f1b8fb7fed3ff_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:15edf4f6aeb81ceebe39ea705222b216bded95d01fe8bfce4d91b97b369c4ce5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:75d6d6e228c8db448712c8c4ce7463cd8978de42545a1ae2a3664475375d46ff_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-authentication-operator@sha256:8a5b24356f618c9c5794cb2881c3805e7cf9bd79f95f9694ac0977505695cef2_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:252dc8ba3414ac50ff56b14900808ada31f102afa0ccd684a0066d369bd989e7_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:33bc668e23d4d3ebb5f9fed08c14663a37a483ddfe5426158ca73e5900623c7d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:435ca54c6bada76ec200d0420b62bdd40890fb879c8c99e60a76c5d353cddfc0_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-ingress-operator@sha256:997535dfc8ab47df6c357f39b9981c4f4d4538c67af3ac7206d8407105e3b218_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:075a470799eee154d399f32fe6b87c0a574a45ca97075da0356a88bf52695cd5_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:4534b5c675e52f1b2aca7802d00717550521f3ed9b134305c85e8846a7d038ab_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:7d33159b415e073ed2b526510ac416867381a466256c0c9511c00aecf039ec76_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-kube-controller-manager-operator@sha256:81a751470151e47c1e3596aa358378fdaa1d1a6859f21bbf7aab85fd822fb889_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:0905ecceec6ddbf5943fec3dc8857833fb7e2b54abc019a8304a8ef8925f61ce_arm64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:3dc231bf8ffeecbfea375ac3fed0eb2892b4cafe670e9b86b3af393154213b46_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:9aa3df1ff21ded9e06d3c1c71450e046ea40a32b4289b8bf33b448543606ef83_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-monitoring-operator@sha256:cd6c6c190e7a6ef119ba79c515471e3fe76dc5cceece7310dc6a16d9e11702e3_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:5a080507be49f8c9813787b678a6162281ae79961d2030b5736f472902f5bdfe_s390x",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:84dd81dd91328854d02a2a2f445079a05df2cb57725134586f9c8d4da97bde70_amd64",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:bad3770097f6a0c9654d8f9638d7d204e0ddfe860b16f7edbfc790ac8aa905a3_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-cluster-samples-operator@sha256:de34b48dcb344803b70341a10bae3d42183d671b9cd5a7f5d4f50df68a7af639_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:6eaad54d3c0ce20aa9e614fb6c9cdbe85bb670fe7fbf1cb4746853d8a732108b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:793343bd5bc4281551358642c332efc5a63fdc215f2861ef008cde6c2c9bdc4e_arm64",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:b41a38296f075671e1807d781bd82eacd70568e90b38fdc20e51443f0bc0751f_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-console-operator@sha256:e119c0c2980dc67aa69ba7460fbf849adf55f3096abd8255d6d11b609317a303_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:0770efc5e323e64d95a8b7d79f323e17cc107368b12e2e8180646fed1698ffc8_s390x",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:109df33cddc4424fad9ad3c5a0fbbc4f94290144485ef08cdc529582efbc78c1_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:487cf44ab2c299e7cbe0f9e6d4ddd1fcd6bc8256d4ac468092fd58fc7b961e4d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-coredns@sha256:4e91f3c3a5734b9b0d5d4129d4ef251ca65e0c3d5a2c3547e5317078da9747c9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:0fd5109745b5eae7bda3edb0b264bd8f33192e0b048eba1abc49afb51e48001d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:185d6b46be9aa0ac9b416169b30a731446b9d3be355f9ba5824dec7af6a88ffd_s390x",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:9dc44b904c260953c2e87bfb0581005179d1e22c03908fc248b1cedeb0ece79b_amd64",
"8Base-RHOSE-4.13:openshift4/ose-haproxy-router@sha256:d51da0731604e8b6d0dffa1a5ad0d6cb856ffa66d3c57f2e48d94a9d3fd97716_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:6d2b4b9093a1cd622a77f31732a3314ea547c3dc906f55efbb9692ba592ad8d7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:d5c56aab8cc3ba6145f45dcc4a23391a6df4401eb6ec2309c390937ab6cdfa8b_s390x",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:dcb637f76dbe940890eb0960a358f8237414fccbf50c33bb1b317c327f96fe8f_amd64",
"8Base-RHOSE-4.13:openshift4/ose-insights-rhel8-operator@sha256:f08b5cb6fdacf0cb78b014abf1f97843cc56df68db295bb418e16c5e3d94961c_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:14e76b91414aab129708a12432268e38e75408c7e9868559d55278a18532113d_arm64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:28869cebbf8e5454493def0e6c8eb9bf33bfd8d56d1ce106a6c6708530c2c1c2_amd64",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:94e3acab7e628f0e655798164ade645680a69a7fdc2ba8b2b2fcf988667ad000_s390x",
"8Base-RHOSE-4.13:openshift4/ose-machine-config-operator@sha256:c44d276a26c1e864a33a0fad7930ed387dec54670be106459c8cbbfd62278306_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:066495402b5fe2c12fd09063e4b6e99a621d5647a8c791902960b5debe9f9697_arm64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:106f0186683403b7a567401bddeb3c5b571052f0cfdcb85765d5a09e88d4f2b7_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:e3023caa9323d2e82850fbc08cf7e088922da744dfda5f311b8fde22cdfa5fae_amd64",
"8Base-RHOSE-4.13:openshift4/ose-openstack-cinder-csi-driver-rhel8-operator@sha256:f3388d4c3ca2eda8e260cd931de76f43a3416383362bc0da1ce374ad06561959_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:07dc29a5e52c0023c6371dbba7bcda8cb008ade9073685be879b07e98b116e42_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:a87881f489d8c3cb8272c31c8ce2a0ca24ce85266d22548dd839e2521543e7e9_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:d0f302c2463ddb16c08a04f191dac57668dda2d2db5fdef3194e96f5ae05547d_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-alertmanager@sha256:f2310bc059ae0f26a98c060c3b0f75f9a7d903f5a8638fd0d85685b49a9fe03d_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:06162dfcc7c9e7de786c04f172786c232407957c62b6b31627714b31b143e6ff_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:625310d087b40ca40265b4d4810861fff36e00427c3c46f7b58278ffcf83f237_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:a3cd65a87781cd07297f56e1595320b8fcdad6d2b4b13f4b433a1d25d48399de_s390x",
"8Base-RHOSE-4.13:openshift4/ose-prometheus-node-exporter@sha256:f4fcf59199f172cf0accd38331f7c249d46de59952abfec49dbc952cf3fa2f95_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:3a6d30d305fb9238cc462d309da1336dd8d5d62b8cf431162f0e2d0afcf867de_ppc64le",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:434d54ba63921a763e12bc268ffe8def1e9675d3a8305598b4eb657beba3a978_arm64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:4351a8d0cc3d8aecdf36b3e1818258e36474eff7605a474dee95307026bb2f8c_amd64",
"8Base-RHOSE-4.13:openshift4/ose-prometheus@sha256:705e668cb406bed1cd0a633028abb1ad4cd7a76199763cd789daaef413ca5bfb_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:af96509b3a7f7337c3dfd538d0e641751c9df4082b8c0cf49952d320f94611c7_s390x",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:b88672bc0fbdbfc98eb2416ec096cfed3efd9e255ffa96570cf600d09a69b0d9_arm64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:d303a79d60b0b9a87c7e7f2a816c1551b50a932c7b12e457e609c8b1106935dd_amd64",
"9Base-RHOSE-4.13:openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:df712d87dbe3c49b18a605b01336697d816168127353252568e33023ce1e66e9_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
}
]
}
RHSA-2023_6269
Vulnerability from csaf_redhat - Published: 2023-11-15 03:12 - Updated: 2024-12-18 04:53A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64 | — |
Workaround
|
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cert-manager Operator for Red Hat OpenShift 1.12.1\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide certificates-as-a-service to developers working within your Kubernetes cluster.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (Rapid Reset Attack) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nA Red Hat Security Bulletin which addresses further details about the Rapid Reset flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6269",
"url": "https://access.redhat.com/errata/RHSA-2023:6269"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "CM-213",
"url": "https://issues.redhat.com/browse/CM-213"
},
{
"category": "external",
"summary": "CM-224",
"url": "https://issues.redhat.com/browse/CM-224"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6269.json"
}
],
"title": "Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.12.1",
"tracking": {
"current_release_date": "2024-12-18T04:53:27+00:00",
"generator": {
"date": "2024-12-18T04:53:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2023:6269",
"initial_release_date": "2023-11-15T03:12:52+00:00",
"revision_history": [
{
"date": "2023-11-15T03:12:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-15T03:12:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T04:53:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cert Manager support for Red Hat OpenShift release",
"product": {
"name": "Cert Manager support for Red Hat OpenShift release",
"product_id": "9Base-CERT-MANAGER-1.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cert_manager:1.12::el9"
}
}
}
],
"category": "product_family",
"name": "Cert Manager support for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"product": {
"name": "cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"product_id": "cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager/cert-manager-operator-bundle\u0026tag=v1.12.1-3"
}
}
},
{
"category": "product_version",
"name": "cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"product": {
"name": "cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"product_id": "cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager/cert-manager-operator-rhel9\u0026tag=v1.12.1-5"
}
}
},
{
"category": "product_version",
"name": "cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"product": {
"name": "cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"product_id": "cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9\u0026tag=v1.12.5-3"
}
}
},
{
"category": "product_version",
"name": "cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64",
"product": {
"name": "cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64",
"product_id": "cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9\u0026tag=v1.12.5-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64 as a component of Cert Manager support for Red Hat OpenShift release",
"product_id": "9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64"
},
"product_reference": "cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"relates_to_product_reference": "9Base-CERT-MANAGER-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64 as a component of Cert Manager support for Red Hat OpenShift release",
"product_id": "9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64"
},
"product_reference": "cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"relates_to_product_reference": "9Base-CERT-MANAGER-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64 as a component of Cert Manager support for Red Hat OpenShift release",
"product_id": "9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64"
},
"product_reference": "cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"relates_to_product_reference": "9Base-CERT-MANAGER-1.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64 as a component of Cert Manager support for Red Hat OpenShift release",
"product_id": "9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
},
"product_reference": "cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64",
"relates_to_product_reference": "9Base-CERT-MANAGER-1.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
],
"known_not_affected": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-15T03:12:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used when installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to , then the Operator will be upgraded automatically when there is a new version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to , then you must manually approve the upgrade to the Operator.\n\nSee https://github.com/openshift/cert-manager-operator/blob/master/README.md for additional information.",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6269"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64"
],
"known_not_affected": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-15T03:12:52+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used when installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to , then the Operator will be upgraded automatically when there is a new version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to , then you must manually approve the upgrade to the Operator.\n\nSee https://github.com/openshift/cert-manager-operator/blob/master/README.md for additional information.",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6269"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-bundle@sha256:140dafad28aa23ffccfcd87ff0674aa9fcbd904194728a9ee482bfa2d8d976aa_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/cert-manager-operator-rhel9@sha256:7d3029dbcbcbec5f6b257afc8866c0b87bc2c694dc7f3fa7ad9e88e2b61cb3d0_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4db42d2b0403b2ae116c52cfa95bc54d621200072ad2c584a38a8e0e9b6e0a71_amd64",
"9Base-CERT-MANAGER-1.12:cert-manager/jetstack-cert-manager-rhel9@sha256:1e3f9343999d6ed86d052688623de31fa74eee6f0b1a747dac32b661ec714b00_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.