Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-24790 (GCVE-0-2024-24790)
Vulnerability from cvelistv5 – Published: 2024-06-05 15:13 – Updated: 2025-02-13 17:40- CWE-180 - Incorrect Behavior Order: Validate Before Canonicalize
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/netip |
Affected:
0 , < 1.21.11
(semver)
Affected: 1.22.0-0 , < 1.22.4 (semver) |
|
| golang | go |
Affected:
0 , < 1.21.11
(semver)
Affected: 1.22.0-0 , < 1.22.4 (semver) cpe:2.3:a:golang:go:*:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-09-05T08:03:29.294Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/cl/590316"
},
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/issue/67680"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ"
},
{
"tags": [
"x_transferred"
],
"url": "https://pkg.go.dev/vuln/GO-2024-2887"
},
{
"tags": [
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/06/04/1"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240905-0002/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "go",
"vendor": "golang",
"versions": [
{
"lessThan": "1.21.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.22.4",
"status": "affected",
"version": "1.22.0-0",
"versionType": "semver"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-24790",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-07T14:59:19.414359Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-09-03T17:47:16.286Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/netip",
"product": "net/netip",
"programRoutines": [
{
"name": "Addr.IsLoopback"
},
{
"name": "Addr.IsMulticast"
},
{
"name": "Addr.IsInterfaceLocalMulticast"
},
{
"name": "Addr.IsLinkLocalMulticast"
},
{
"name": "Addr.IsGlobalUnicast"
},
{
"name": "Addr.IsPrivate"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.21.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.22.4",
"status": "affected",
"version": "1.22.0-0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Enze Wang of Alioth (@zer0yu)"
},
{
"lang": "en",
"value": "Jianjun Chen of Zhongguancun Lab (@chenjj)"
}
],
"descriptions": [
{
"lang": "en",
"value": "The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-180: Incorrect Behavior Order: Validate Before Canonicalize",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T17:11:30.724Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/590316"
},
{
"url": "https://go.dev/issue/67680"
},
{
"url": "https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ"
},
{
"url": "https://pkg.go.dev/vuln/GO-2024-2887"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/06/04/1"
}
],
"title": "Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses in net/netip"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2024-24790",
"datePublished": "2024-06-05T15:13:50.527Z",
"dateReserved": "2024-01-30T16:05:14.758Z",
"dateUpdated": "2025-02-13T17:40:28.639Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-24790",
"date": "2026-07-01",
"epss": "0.01952",
"percentile": "0.77787"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"1.21.11\", \"matchCriteriaId\": \"7A191F39-17BE-4051-A445-E60525659377\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.22.0\", \"versionEndExcluding\": \"1.22.4\", \"matchCriteriaId\": \"4B85AD31-1004-48F3-9A80-7CF48CD0CEA7\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms.\"}, {\"lang\": \"es\", \"value\": \"Los diversos m\\u00e9todos Is (IsPrivate, IsLoopback, etc.) no funcionaron como se esperaba para las direcciones IPv6 asignadas a IPv4, devolviendo falso para direcciones que devolver\\u00edan verdadero en sus formas IPv4 tradicionales.\"}]",
"id": "CVE-2024-24790",
"lastModified": "2024-11-21T08:59:42.813",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}, {\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
"published": "2024-06-05T16:15:10.560",
"references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2024/06/04/1\", \"source\": \"security@golang.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://go.dev/cl/590316\", \"source\": \"security@golang.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://go.dev/issue/67680\", \"source\": \"security@golang.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\", \"source\": \"security@golang.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2887\", \"source\": \"security@golang.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/06/04/1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://go.dev/cl/590316\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://go.dev/issue/67680\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2887\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240905-0002/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security@golang.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-24790\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2024-06-05T16:15:10.560\",\"lastModified\":\"2026-06-17T07:14:52.097\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms.\"},{\"lang\":\"es\",\"value\":\"Los diversos m\u00e9todos Is (IsPrivate, IsLoopback, etc.) no funcionaron como se esperaba para las direcciones IPv6 asignadas a IPv4, devolviendo falso para direcciones que devolver\u00edan verdadero en sus formas IPv4 tradicionales.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/netip\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/netip\",\"programRoutines\":[{\"name\":\"Addr.IsLoopback\"},{\"name\":\"Addr.IsMulticast\"},{\"name\":\"Addr.IsInterfaceLocalMulticast\"},{\"name\":\"Addr.IsLinkLocalMulticast\"},{\"name\":\"Addr.IsGlobalUnicast\"},{\"name\":\"Addr.IsPrivate\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.21.11\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.22.0-0\",\"lessThan\":\"1.22.4\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"affectedData\":[{\"vendor\":\"golang\",\"product\":\"go\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\"],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.21.11\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.22.0-0\",\"lessThan\":\"1.22.4\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2024-08-07T14:59:19.414359Z\",\"id\":\"CVE-2024-24790\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.21.11\",\"matchCriteriaId\":\"7A191F39-17BE-4051-A445-E60525659377\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.22.0\",\"versionEndExcluding\":\"1.22.4\",\"matchCriteriaId\":\"4B85AD31-1004-48F3-9A80-7CF48CD0CEA7\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/06/04/1\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://go.dev/cl/590316\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/67680\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\",\"source\":\"security@golang.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2887\",\"source\":\"security@golang.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/06/04/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://go.dev/cl/590316\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/67680\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2887\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240905-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://go.dev/cl/590316\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://go.dev/issue/67680\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2887\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/06/04/1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240905-0002/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-09-05T08:03:29.294Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-24790\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-07T14:59:19.414359Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\"], \"vendor\": \"golang\", \"product\": \"go\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.21.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.22.0-0\", \"lessThan\": \"1.22.4\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-03T17:47:04.149Z\"}}], \"cna\": {\"title\": \"Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses in net/netip\", \"credits\": [{\"lang\": \"en\", \"value\": \"Enze Wang of Alioth (@zer0yu)\"}, {\"lang\": \"en\", \"value\": \"Jianjun Chen of Zhongguancun Lab (@chenjj)\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/netip\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.21.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.22.0-0\", \"lessThan\": \"1.22.4\", \"versionType\": \"semver\"}], \"packageName\": \"net/netip\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Addr.IsLoopback\"}, {\"name\": \"Addr.IsMulticast\"}, {\"name\": \"Addr.IsInterfaceLocalMulticast\"}, {\"name\": \"Addr.IsLinkLocalMulticast\"}, {\"name\": \"Addr.IsGlobalUnicast\"}, {\"name\": \"Addr.IsPrivate\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/590316\"}, {\"url\": \"https://go.dev/issue/67680\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2887\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/06/04/1\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-180: Incorrect Behavior Order: Validate Before Canonicalize\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2024-06-10T17:11:30.724Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-24790\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:40:28.639Z\", \"dateReserved\": \"2024-01-30T16:05:14.758Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2024-06-05T15:13:50.527Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
RHBA-2024:7523
Vulnerability from csaf_redhat - Published: 2024-10-02 15:29 - Updated: 2026-07-01 19:27A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn't find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won't start backtracking the regular expression due to greedy matching.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in the dset package. Affected versions of this package are vulnerable to Prototype Pollution via the dset function due to improper user input sanitization. This vulnerability allows the attacker to inject a malicious object property using the built-in Object property __proto__, which is recursively assigned to all the objects in the program.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in Microsoft's Azure Identity Libraries and the Microsoft Authentication Library (MSAL). The flaw arises from a race condition—a scenario where the timing of events leads to unexpected behavior—during concurrent operations on shared resources. This can result in privilege escalation, allowing attackers to gain unauthorized access to sensitive information. The vulnerability affects multiple versions of these libraries across various programming languages, including Java, .NET, Node.js, Python, JavaScript, C++, and Go. Microsoft has addressed this issue by releasing updated versions of the affected libraries. Users are strongly advised to upgrade to these patched versions to mitigate potential security risks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — | ||
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the `Proxy-Authorization` HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in the fast-loops Node.js package. This flaw allows an attacker to alter the behavior of all objects inheriting from the affected prototype by passing arguments to the objectMergeDeep function crafted with the built-in property: __proto__. This issue can potentially lead to a denial of service, remote code execution, or Cross-site scripting.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — | ||
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.3.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed,\ncustomizable developer portal based on Backstage.io. RHDH is supported on\nOpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features\nof RHDH include a single pane of glass, a centralized software catalog,\nself-service via golden path templates, and Tech Docs. RHDH is extensible by\nplugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:7523",
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3"
},
{
"category": "external",
"summary": "RHIDP-3725",
"url": "https://issues.redhat.com/browse/RHIDP-3725"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_7523.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.0 release",
"tracking": {
"current_release_date": "2026-07-01T19:27:57+00:00",
"generator": {
"date": "2026-07-01T19:27:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHBA-2024:7523",
"initial_release_date": "2024-10-02T15:29:03+00:00",
"revision_history": [
{
"date": "2024-10-02T15:29:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-02T15:29:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T19:27:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product": {
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product": {
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product_id": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1.3-100"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product": {
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product_id": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1.3-95"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product": {
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product_id": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1.3-96"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
},
"product_reference": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64"
},
"product_reference": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
},
"product_reference": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2024-4068",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280600"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends \"imbalanced braces\" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "braces: fails to limit the number of characters it can handle",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4068"
},
{
"category": "external",
"summary": "RHBZ#2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308",
"url": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/issues/35",
"url": "https://github.com/micromatch/braces/issues/35"
}
],
"release_date": "2024-03-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "braces: fails to limit the number of characters it can handle"
},
{
"cve": "CVE-2024-21529",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-09-11T05:20:09.464815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311418"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the dset package. Affected versions of this package are vulnerable to Prototype Pollution via the dset function due to improper user input sanitization. This vulnerability allows the attacker to inject a malicious object property using the built-in Object property __proto__, which is recursively assigned to all the objects in the program.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dset: Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Prototype Pollution is rated with as Important severity issue because it exploits the fundamental inheritance mechanism of JavaScript objects, allowing an attacker to maliciously alter the global Object.prototype. This can lead to widespread and unpredictable behavior across the entire application, as all objects inherit from this polluted prototype. The consequences can range from denial of service (DoS), where important functions like toString() are rendered unusable, to remote code execution (RCE), where injected properties are executed in privileged contexts.\n\n\nrhdh-hub-container 1.2 include the patch for this vulnerability starting at 1.2.5",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21529"
},
{
"category": "external",
"summary": "RHBZ#2311418",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311418"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21529"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21529",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21529"
},
{
"category": "external",
"summary": "https://github.com/lukeed/dset/commit/16d6154e085bef01e99f01330e5a421a7f098afa",
"url": "https://github.com/lukeed/dset/commit/16d6154e085bef01e99f01330e5a421a7f098afa"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-DSET-7116691",
"url": "https://security.snyk.io/vuln/SNYK-JS-DSET-7116691"
}
],
"release_date": "2024-09-11T05:15:02.547000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dset: Prototype Pollution"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-35255",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2024-07-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295081"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Microsoft\u0027s Azure Identity Libraries and the Microsoft Authentication Library (MSAL). The flaw arises from a race condition\u2014a scenario where the timing of events leads to unexpected behavior\u2014during concurrent operations on shared resources. This can result in privilege escalation, allowing attackers to gain unauthorized access to sensitive information. The vulnerability affects multiple versions of these libraries across various programming languages, including Java, .NET, Node.js, Python, JavaScript, C++, and Go. Microsoft has addressed this issue by releasing updated versions of the affected libraries. Users are strongly advised to upgrade to these patched versions to mitigate potential security risks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat build of Apache Camel for Spring boot is not affected as 4.4.1 was released containing a fixed version of the Azure Identity Library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-35255"
},
{
"category": "external",
"summary": "RHBZ#2295081",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295081"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-35255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35255"
},
{
"category": "external",
"summary": "https://github.com/Azure/azure-sdk-for-go/commit/50774cd9709905523136fb05e8c85a50e8984499",
"url": "https://github.com/Azure/azure-sdk-for-go/commit/50774cd9709905523136fb05e8c85a50e8984499"
},
{
"category": "external",
"summary": "https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/4806#issuecomment-2178960340",
"url": "https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/4806#issuecomment-2178960340"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-m5vv-6r4h-3vj9",
"url": "https://github.com/advisories/GHSA-m5vv-6r4h-3vj9"
},
{
"category": "external",
"summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35255",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35255"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity"
},
{
"cve": "CVE-2024-37891",
"cwe": {
"id": "CWE-669",
"name": "Incorrect Resource Transfer Between Spheres"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292788"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the `Proxy-Authorization` HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: proxy-authorization request header is not stripped during cross-origin redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": ".egg-info packages, like urllib3-1.24.2-py3.6.egg-info, store only metadata such as package version and dependencies and do not contain any affected codebase.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37891"
},
{
"category": "external",
"summary": "RHBZ#2292788",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292788"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37891",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37891"
}
],
"release_date": "2024-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "urllib3: proxy-authorization request header is not stripped during cross-origin redirects"
},
{
"cve": "CVE-2024-39008",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-07-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the fast-loops Node.js package. This flaw allows an attacker to alter the behavior of all objects inheriting from the affected prototype by passing arguments to the objectMergeDeep function crafted with the built-in property: __proto__. This issue can potentially lead to a denial of service, remote code execution, or Cross-site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-loops: prototype pollution via objectMergeDeep",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39008"
},
{
"category": "external",
"summary": "RHBZ#2295029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39008"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39008",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39008"
},
{
"category": "external",
"summary": "https://gist.github.com/mestrtee/f09a507c8d59fbbb7fd40880cd9b87ed",
"url": "https://gist.github.com/mestrtee/f09a507c8d59fbbb7fd40880cd9b87ed"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-loops: prototype pollution via objectMergeDeep"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
}
]
}
RHEA-2025:0507
Vulnerability from csaf_redhat - Published: 2025-01-21 12:46 - Updated: 2026-07-01 13:37A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service (DoS) conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "GA release of Helm 3.15.4 for OpenShift Container Platform 4.17 version.",
"title": "Topic"
},
{
"category": "general",
"text": "This errata advisory is for publishing the GA release of Helm 3.15.4 for OpenShift Container Platform 4.17 version.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHEA-2025:0507",
"url": "https://access.redhat.com/errata/RHEA-2025:0507"
},
{
"category": "external",
"summary": "https://docs.openshift.com/container-platform/latest/applications/working_with_helm_charts/installing-helm.html",
"url": "https://docs.openshift.com/container-platform/latest/applications/working_with_helm_charts/installing-helm.html"
},
{
"category": "external",
"summary": "DPROD-391",
"url": "https://issues.redhat.com/browse/DPROD-391"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhea-2025_0507.json"
}
],
"title": "Red Hat Enhancement Advisory: Advisory for publishing Helm 3.15.4 GA release",
"tracking": {
"current_release_date": "2026-07-01T13:37:09+00:00",
"generator": {
"date": "2026-07-01T13:37:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHEA-2025:0507",
"initial_release_date": "2025-01-21T12:46:18+00:00",
"revision_history": [
{
"date": "2025-01-21T12:46:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-01-21T12:46:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:37:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "OpenShift Developer Tools and Services for OCP 4.17",
"product": {
"name": "OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ocp_tools:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "OpenShift Developer Tools and Services"
},
{
"branches": [
{
"category": "product_version",
"name": "helm-0:3.15.4-60.el9.src",
"product": {
"name": "helm-0:3.15.4-60.el9.src",
"product_id": "helm-0:3.15.4-60.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm@3.15.4-60.el9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "helm-0:3.15.4-60.el9.aarch64",
"product": {
"name": "helm-0:3.15.4-60.el9.aarch64",
"product_id": "helm-0:3.15.4-60.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm@3.15.4-60.el9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "helm-0:3.15.4-60.el9.ppc64le",
"product": {
"name": "helm-0:3.15.4-60.el9.ppc64le",
"product_id": "helm-0:3.15.4-60.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm@3.15.4-60.el9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "helm-0:3.15.4-60.el9.s390x",
"product": {
"name": "helm-0:3.15.4-60.el9.s390x",
"product_id": "helm-0:3.15.4-60.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm@3.15.4-60.el9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "helm-0:3.15.4-60.el9.x86_64",
"product": {
"name": "helm-0:3.15.4-60.el9.x86_64",
"product_id": "helm-0:3.15.4-60.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm@3.15.4-60.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "helm-redistributable-0:3.15.4-60.el9.x86_64",
"product": {
"name": "helm-redistributable-0:3.15.4-60.el9.x86_64",
"product_id": "helm-redistributable-0:3.15.4-60.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/helm-redistributable@3.15.4-60.el9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-0:3.15.4-60.el9.aarch64 as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64"
},
"product_reference": "helm-0:3.15.4-60.el9.aarch64",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-0:3.15.4-60.el9.ppc64le as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le"
},
"product_reference": "helm-0:3.15.4-60.el9.ppc64le",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-0:3.15.4-60.el9.s390x as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x"
},
"product_reference": "helm-0:3.15.4-60.el9.s390x",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-0:3.15.4-60.el9.src as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src"
},
"product_reference": "helm-0:3.15.4-60.el9.src",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-0:3.15.4-60.el9.x86_64 as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64"
},
"product_reference": "helm-0:3.15.4-60.el9.x86_64",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm-redistributable-0:3.15.4-60.el9.x86_64 as a component of OpenShift Developer Tools and Services for OCP 4.17",
"product_id": "9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
},
"product_reference": "helm-redistributable-0:3.15.4-60.el9.x86_64",
"relates_to_product_reference": "9Base-OCP-Tools-4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24788",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-05-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279814"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service (DoS) conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net: malformed DNS message can cause infinite loop",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24788"
},
{
"category": "external",
"summary": "RHBZ#2279814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279814"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2824",
"url": "https://pkg.go.dev/vuln/GO-2024-2824"
}
],
"release_date": "2024-05-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-01-21T12:46:18+00:00",
"details": "Ensuring that the binaries for Helm are available for use to the customers/users. Follow the instructions linked in the References section to download the binaries for Helm and use them.",
"product_ids": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2025:0507"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net: malformed DNS message can cause infinite loop"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-01-21T12:46:18+00:00",
"details": "Ensuring that the binaries for Helm are available for use to the customers/users. Follow the instructions linked in the References section to download the binaries for Helm and use them.",
"product_ids": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2025:0507"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-01-21T12:46:18+00:00",
"details": "Ensuring that the binaries for Helm are available for use to the customers/users. Follow the instructions linked in the References section to download the binaries for Helm and use them.",
"product_ids": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2025:0507"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.aarch64",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.ppc64le",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.s390x",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.src",
"9Base-OCP-Tools-4.17:helm-0:3.15.4-60.el9.x86_64",
"9Base-OCP-Tools-4.17:helm-redistributable-0:3.15.4-60.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
RHSA-2024:10186
Vulnerability from csaf_redhat - Published: 2024-11-22 01:06 - Updated: 2026-07-01 13:37A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — |
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
Workaround
|
A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
Workaround
|
A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
Workaround
|
A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.5.5 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)\n\n* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains\ndeeply nested structures can cause a panic due to stack exhaustion\n(CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution\n(CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6\naddresses (CVE-2024-24790)\n\n* cross-spawn: Regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in the\nReferences section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10186",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10186.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement update",
"tracking": {
"current_release_date": "2026-07-01T13:37:48+00:00",
"generator": {
"date": "2026-07-01T13:37:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:10186",
"initial_release_date": "2024-11-22T01:06:56+00:00",
"revision_history": [
{
"date": "2024-11-22T01:06:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-22T01:06:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:37:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
RHSA-2024:10775
Vulnerability from csaf_redhat - Published: 2024-12-04 00:59 - Updated: 2026-07-01 19:32A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn't find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won't start backtracking the regular expression due to greedy matching.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes new features and bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.6 provides these new features:\n\n* Support for ARM architecture in secured clusters (Technology Preview)\n\n* Certifications for Red Hat Advanced Cluster Security Cloud Service\n\n* Compliance reporting (Technology Preview)\n\n* API documentation available publicly\n\n* Visualizing external entities in the network graph (Technology Preview)\n\n* Microsoft Sentinel notifier\n\n* Support for backups using non-AWS S3 compatible providers\n\n* Support for policy as code (Technology Preview)\n\n* Scanner V4 use of CSAF-VEX for vulnerability data\n\n* Scanner V4 support for RHCOS (Technology Preview)\n\n* Vulnerability Management page updates\n\nIt includes fixes for the following security issues:\n\n* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067).\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789).\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790).\n* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249).\n\nFor more information, see the release note link in \"References.\"",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10775",
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index"
},
{
"category": "external",
"summary": "2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10775.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.6 enhancement and security update",
"tracking": {
"current_release_date": "2026-07-01T19:32:08+00:00",
"generator": {
"date": "2026-07-01T19:32:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:10775",
"initial_release_date": "2024-12-04T00:59:51+00:00",
"revision_history": [
{
"date": "2024-12-04T00:59:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-04T00:59:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T19:32:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.6 for RHEL 8",
"product": {
"name": "RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
RHSA-2024:10906
Vulnerability from csaf_redhat - Published: 2024-12-10 01:37 - Updated: 2026-07-01 13:53A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Workaround
|
A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Workaround
|
A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Workaround
|
A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Workaround
|
A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Workaround
|
A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.5 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\n* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)\n\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n\n* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n\n* go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)\n\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10906",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "MIG-1458",
"url": "https://issues.redhat.com/browse/MIG-1458"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10906.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-01T13:53:50+00:00",
"generator": {
"date": "2026-07-01T13:53:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:10906",
"initial_release_date": "2024-12-10T01:37:19+00:00",
"revision_history": [
{
"date": "2024-12-10T01:37:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T01:37:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:53:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.5-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.5-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.5-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.5-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.5-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
RHSA-2024:4212
Vulnerability from csaf_redhat - Published: 2024-07-02 09:02 - Updated: 2026-07-01 13:39A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
|
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for golang is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The golang packages provide the Go programming language compiler.\n\nSecurity Fix(es):\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4212",
"url": "https://access.redhat.com/errata/RHSA-2024:4212"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4212.json"
}
],
"title": "Red Hat Security Advisory: golang security update",
"tracking": {
"current_release_date": "2026-07-01T13:39:57+00:00",
"generator": {
"date": "2026-07-01T13:39:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:4212",
"initial_release_date": "2024-07-02T09:02:04+00:00",
"revision_history": [
{
"date": "2024-07-02T09:02:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-02T09:02:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:39:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.el9_4.aarch64",
"product": {
"name": "go-toolset-0:1.21.11-1.el9_4.aarch64",
"product_id": "go-toolset-0:1.21.11-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.el9_4.aarch64",
"product": {
"name": "golang-0:1.21.11-1.el9_4.aarch64",
"product_id": "golang-0:1.21.11-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.el9_4.aarch64",
"product": {
"name": "golang-bin-0:1.21.11-1.el9_4.aarch64",
"product_id": "golang-bin-0:1.21.11-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.el9_4?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.el9_4.ppc64le",
"product": {
"name": "go-toolset-0:1.21.11-1.el9_4.ppc64le",
"product_id": "go-toolset-0:1.21.11-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.el9_4.ppc64le",
"product": {
"name": "golang-0:1.21.11-1.el9_4.ppc64le",
"product_id": "golang-0:1.21.11-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.el9_4.ppc64le",
"product": {
"name": "golang-bin-0:1.21.11-1.el9_4.ppc64le",
"product_id": "golang-bin-0:1.21.11-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.el9_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.el9_4.x86_64",
"product": {
"name": "go-toolset-0:1.21.11-1.el9_4.x86_64",
"product_id": "go-toolset-0:1.21.11-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.el9_4.x86_64",
"product": {
"name": "golang-0:1.21.11-1.el9_4.x86_64",
"product_id": "golang-0:1.21.11-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.el9_4.x86_64",
"product": {
"name": "golang-bin-0:1.21.11-1.el9_4.x86_64",
"product_id": "golang-bin-0:1.21.11-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.el9_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.el9_4.s390x",
"product": {
"name": "go-toolset-0:1.21.11-1.el9_4.s390x",
"product_id": "go-toolset-0:1.21.11-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.el9_4.s390x",
"product": {
"name": "golang-0:1.21.11-1.el9_4.s390x",
"product_id": "golang-0:1.21.11-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.el9_4.s390x",
"product": {
"name": "golang-bin-0:1.21.11-1.el9_4.s390x",
"product_id": "golang-bin-0:1.21.11-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.el9_4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-0:1.21.11-1.el9_4.src",
"product": {
"name": "golang-0:1.21.11-1.el9_4.src",
"product_id": "golang-0:1.21.11-1.el9_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.el9_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-docs-0:1.21.11-1.el9_4.noarch",
"product": {
"name": "golang-docs-0:1.21.11-1.el9_4.noarch",
"product_id": "golang-docs-0:1.21.11-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-docs@1.21.11-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "golang-misc-0:1.21.11-1.el9_4.noarch",
"product": {
"name": "golang-misc-0:1.21.11-1.el9_4.noarch",
"product_id": "golang-misc-0:1.21.11-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-misc@1.21.11-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "golang-src-0:1.21.11-1.el9_4.noarch",
"product": {
"name": "golang-src-0:1.21.11-1.el9_4.noarch",
"product_id": "golang-src-0:1.21.11-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-src@1.21.11-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "golang-tests-0:1.21.11-1.el9_4.noarch",
"product": {
"name": "golang-tests-0:1.21.11-1.el9_4.noarch",
"product_id": "golang-tests-0:1.21.11-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-tests@1.21.11-1.el9_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64"
},
"product_reference": "go-toolset-0:1.21.11-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le"
},
"product_reference": "go-toolset-0:1.21.11-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x"
},
"product_reference": "go-toolset-0:1.21.11-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64"
},
"product_reference": "go-toolset-0:1.21.11-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64"
},
"product_reference": "golang-0:1.21.11-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le"
},
"product_reference": "golang-0:1.21.11-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x"
},
"product_reference": "golang-0:1.21.11-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.el9_4.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src"
},
"product_reference": "golang-0:1.21.11-1.el9_4.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64"
},
"product_reference": "golang-0:1.21.11-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64"
},
"product_reference": "golang-bin-0:1.21.11-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le"
},
"product_reference": "golang-bin-0:1.21.11-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x"
},
"product_reference": "golang-bin-0:1.21.11-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64"
},
"product_reference": "golang-bin-0:1.21.11-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-docs-0:1.21.11-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch"
},
"product_reference": "golang-docs-0:1.21.11-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-misc-0:1.21.11-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch"
},
"product_reference": "golang-misc-0:1.21.11-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-src-0:1.21.11-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch"
},
"product_reference": "golang-src-0:1.21.11-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-tests-0:1.21.11-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
},
"product_reference": "golang-tests-0:1.21.11-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-02T09:02:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4212"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-02T09:02:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4212"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:golang-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
RHSA-2024:4237
Vulnerability from csaf_redhat - Published: 2024-07-02 15:43 - Updated: 2026-07-01 13:40A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for go-toolset is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. \n\nSecurity Fix(es):\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4237",
"url": "https://access.redhat.com/errata/RHSA-2024:4237"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "RHEL-10069",
"url": "https://issues.redhat.com/browse/RHEL-10069"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4237.json"
}
],
"title": "Red Hat Security Advisory: go-toolset security update",
"tracking": {
"current_release_date": "2026-07-01T13:40:00+00:00",
"generator": {
"date": "2026-07-01T13:40:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:4237",
"initial_release_date": "2024-07-02T15:43:47+00:00",
"revision_history": [
{
"date": "2024-07-02T15:43:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-02T15:43:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:40:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"product": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src (go-toolset:rhel8)",
"product_id": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=src\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=src\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"product": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src (go-toolset:rhel8)",
"product_id": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=src\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product": {
"name": "golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8)",
"product_id": "golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-docs@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=noarch\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product": {
"name": "golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8)",
"product_id": "golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-misc@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=noarch\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product": {
"name": "golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8)",
"product_id": "golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-src@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=noarch\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product": {
"name": "golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8)",
"product_id": "golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-tests@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=noarch\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8)",
"product_id": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8)",
"product_id": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debuginfo@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8)",
"product_id": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debugsource@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8)",
"product_id": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8)",
"product_id": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8)",
"product_id": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debuginfo@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8)",
"product_id": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debugsource@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8)",
"product_id": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8)",
"product_id": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8)",
"product_id": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debuginfo@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8)",
"product_id": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debugsource@1.21.2-3.module%2Bel8.10.0%2B21244%2B5b2d9000?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8)",
"product_id": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=s390x\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8)",
"product_id": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=s390x\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.21.11-1.module%2Bel8.10.0%2B21986%2B2112108a?arch=s390x\u0026rpmmod=go-toolset:rhel8:8100020240613152020:a3795dee"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8"
},
"product_reference": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8"
},
"product_reference": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8"
},
"product_reference": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8"
},
"product_reference": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8"
},
"product_reference": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8"
},
"product_reference": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8"
},
"product_reference": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8"
},
"product_reference": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8"
},
"product_reference": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8"
},
"product_reference": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8"
},
"product_reference": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8"
},
"product_reference": "golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
},
"product_reference": "golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
},
"product_reference": "golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
},
"product_reference": "golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
},
"product_reference": "golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-02T15:43:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4237"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-02T15:43:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4237"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debuginfo-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:delve-debugsource-0:1.21.2-3.module+el8.10.0+21244+5b2d9000.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:go-toolset-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.src::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.aarch64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.ppc64le::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.s390x::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-bin-0:1.21.11-1.module+el8.10.0+21986+2112108a.x86_64::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-docs-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-misc-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-src-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8",
"AppStream-8.10.0.Z.MAIN.EUS:golang-tests-0:1.21.11-1.module+el8.10.0+21986+2112108a.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
RHSA-2024:4333
Vulnerability from csaf_redhat - Published: 2024-07-23 16:27 - Updated: 2026-07-01 13:56A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Moderate Logging for Red Hat OpenShift - 5.9.4",
"title": "Topic"
},
{
"category": "general",
"text": "Logging for Red Hat OpenShift - 5.9.4\nlogging-loki-container: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4333",
"url": "https://access.redhat.com/errata/RHSA-2024:4333"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "LOG-5373",
"url": "https://issues.redhat.com/browse/LOG-5373"
},
{
"category": "external",
"summary": "LOG-5524",
"url": "https://issues.redhat.com/browse/LOG-5524"
},
{
"category": "external",
"summary": "LOG-5603",
"url": "https://issues.redhat.com/browse/LOG-5603"
},
{
"category": "external",
"summary": "LOG-5697",
"url": "https://issues.redhat.com/browse/LOG-5697"
},
{
"category": "external",
"summary": "LOG-5701",
"url": "https://issues.redhat.com/browse/LOG-5701"
},
{
"category": "external",
"summary": "LOG-5702",
"url": "https://issues.redhat.com/browse/LOG-5702"
},
{
"category": "external",
"summary": "LOG-5707",
"url": "https://issues.redhat.com/browse/LOG-5707"
},
{
"category": "external",
"summary": "LOG-5747",
"url": "https://issues.redhat.com/browse/LOG-5747"
},
{
"category": "external",
"summary": "LOG-5749",
"url": "https://issues.redhat.com/browse/LOG-5749"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4333.json"
}
],
"title": "Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.9.4",
"tracking": {
"current_release_date": "2026-07-01T13:56:09+00:00",
"generator": {
"date": "2026-07-01T13:56:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:4333",
"initial_release_date": "2024-07-23T16:27:58+00:00",
"revision_history": [
{
"date": "2024-07-23T16:27:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-23T16:27:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:56:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOL 5.9 for RHEL 9",
"product": {
"name": "RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:5.9::el9"
}
}
}
],
"category": "product_family",
"name": "logging for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.9.4-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-255"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-274"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"product_id": "openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"product_id": "openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.34.1-12"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.9.4-15"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-612"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-261"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.9.4-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-255"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-274"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"product_id": "openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le",
"product_id": "openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.34.1-12"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.9.4-15"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-612"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-261"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.9.4-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"product": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"product_id": "openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=v5.9.4-27"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-255"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-274"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"product_id": "openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"product_id": "openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.34.1-12"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"product": {
"name": "openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"product_id": "openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-operator-bundle\u0026tag=v5.9.4-34"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.9.4-15"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-612"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-261"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.9.4-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-255"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-274"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"product_id": "openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"product_id": "openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.34.1-12"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.9.4-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.9.4-15"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-612"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-261"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64"
},
"product_reference": "openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64"
},
"product_reference": "openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64 as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"relates_to_product_reference": "9Base-RHOL-5.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le as a component of RHOL 5.9 for RHEL 9",
"product_id": "9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-23T16:27:58+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.14/release_notes/ocp-4-14-release-notes.html\n\nFor Red Hat OpenShift Logging 5.9, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.14/logging/cluster-logging-upgrading.html",
"product_ids": [
"9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4333"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHOL-5.9:openshift-logging/cluster-logging-operator-bundle@sha256:4692c28a730de2a413042372647da244cfeca7012e0e9ff4c7f594fa34b535c9_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:503167dfcfcb931da055a257c45bc25a5ed40689dd6be16dd377f8a772de1815_amd64",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:8ed56aeca6b017e32c7fd304a9ead907348a93b56b920e53220b151e1d72549e_ppc64le",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:d6160be4c9cb7d99d7b939272f3e959a8071f7bfc5e0386384ece105c5223f67_s390x",
"9Base-RHOL-5.9:openshift-logging/cluster-logging-rhel9-operator@sha256:edccd63edba4b63caf23bc47086d739eb95cf2dee9b3b3b96edc02f49fc31683_arm64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:158b9f235c6aea056aa3c1a6b868d82abf56fe99827efbe8dbf81fd5b6d7d921_ppc64le",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:463a0f19c38e18b4f8709afd496d2ffe7a90cf0bbe938c8ee1e792abef1867cc_s390x",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:56887bfa89578ef228d9682e60366e8e3450676b1e32e9ea593e7b369aead613_amd64",
"9Base-RHOL-5.9:openshift-logging/eventrouter-rhel9@sha256:ca933d753d826c72513b8aba907212906585789c4276ec883423492379251046_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:87cc7e3c8e8548f825e16a97049f045415e5400fef0b696a35f3c186f3317452_ppc64le",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:cd44fb393b2111de5a82c7f4987dbb0f6061f69d935585717f0c937dd413a030_arm64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f27df646caa2dd2d3137b724650131cb635517fce5580df6c9573a783251b796_amd64",
"9Base-RHOL-5.9:openshift-logging/fluentd-rhel9@sha256:f3ce4c578618bfeb9a2485516f5686d4db64447d6ec3f98c83dbb6513a2d7a54_s390x",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:1392ecf84f028961b14e22539b1bfb249baad922faf8009078770a923287666a_ppc64le",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:3b15b9c34291fd8030bd8fc17a6be53e854b10059b133262a42765a89a6a06b7_arm64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:8b0debb82079c693921094e0f931502dddea78cc27321546dfeaac5151642cd3_amd64",
"9Base-RHOL-5.9:openshift-logging/log-file-metric-exporter-rhel9@sha256:f0536d732f5dfab9af68e03ba71032abc9fda7868f4e598060b4f036d422d8e6_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:389bab83f8f13b8be194d9b749b11cd9dd7a42888b64b5551b359822fb316c0a_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:5fcc83c0ec1d1d1dfdb829e3800d3c45f68c30473e7111b4832a424aab6f9c14_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:a3a9f75013fe4f308e3021a2a7f3daeda97be39d756ec884cdf42f1e27ef54d1_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-loki-rhel9@sha256:d8e75c2fde1739164020adf26942fe0822939aa25567ad83eb6aa932a499dd34_arm64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:2be2467b675e403b52357ad7f9c430dc7bcfd86150bed90fac222352a364270a_amd64",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:55d632b221b0a93781d721ecb488b62ce44eec06255d273fa4160671b48cd011_s390x",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:90cf626029152a0f91e0c45416ab368ae523961e51683f1c77f58867c610ee39_ppc64le",
"9Base-RHOL-5.9:openshift-logging/logging-view-plugin-rhel9@sha256:f22c5436fa2c3d64f9044646a26089fb193eb6574ed6322bc36b83da4284d497_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-operator-bundle@sha256:11b5e9c4e2f69cf131f734dbd9f1ec1b9926aaf9a691c2c4d8ed70e41fd6f820_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:1581330d225d4ddb2e2b388b262c4e1490d47e9996e353bd08bffe08d669008f_arm64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:24d6e282613aaddbce75496c0e7880a34b1e60dd03b418ea498c7d8ddfb3c1f6_ppc64le",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:3d4e4608806362c23a1f6f3b63c725a383478f276822569cd80eb104d1d15534_amd64",
"9Base-RHOL-5.9:openshift-logging/loki-rhel9-operator@sha256:c3822c7ab8741ef6dad2032b5381f5b8d20f02f032c17733e28a862d3451b007_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:22037ed2dcd6011c3debe2e268bd54d172bd7f425810ebadb8e99d143f87afd0_ppc64le",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:75aca4bafc8e533a122a0ae620fa7c12dcabfd1ad4c85c3548e9849395d6bf9a_s390x",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:d09acb4495b970b76b56383b830f37417f8bbb32cc23989097649252eff165eb_amd64",
"9Base-RHOL-5.9:openshift-logging/lokistack-gateway-rhel9@sha256:eb4e3ddb22ea45e87e627cf7e4f34702e463fec7f93193f749e7bd5090b275a6_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:23144e3c951939e73e312a432dcdf2175df75289eb65a49a702aa5703bf42d9b_arm64",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:34d0d10e4cc8a045f649e0de4b312096782062e397d57a57606c9bd82cb26667_ppc64le",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:3aea842460876baa24b63a146b31f8905a48d55dabb4654e91e6da3d2539d628_s390x",
"9Base-RHOL-5.9:openshift-logging/opa-openshift-rhel9@sha256:552b7dc3057e38809196abecbe16582cffaa851c8b6a6e76fb5cad57115da713_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:07f4aaffe651dc52fd6f53e6fc139954b9f70e7a928f9f97b58de5a5d08e98fd_amd64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:49ea4969fdd09bca19effed6e2bc12490cffbd42ec1153b517484a6ff486586a_arm64",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:81dcd25f28cc125b35856c441ad69d001d9525f799dcefdde2d29d9838b7204e_s390x",
"9Base-RHOL-5.9:openshift-logging/vector-rhel9@sha256:930988091e284dbd6747653fb664256e61de37f29989f71b92c4e3ecad61a869_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
RHSA-2024:4335
Vulnerability from csaf_redhat - Published: 2024-07-17 13:48 - Updated: 2026-07-01 13:56A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Moderate -- Logging for Red Hat OpenShift - 5.8.9",
"title": "Topic"
},
{
"category": "general",
"text": "Logging for Red Hat OpenShift - 5.8.9\ngolang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4335",
"url": "https://access.redhat.com/errata/RHSA-2024:4335"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "LOG-5620",
"url": "https://issues.redhat.com/browse/LOG-5620"
},
{
"category": "external",
"summary": "LOG-5698",
"url": "https://issues.redhat.com/browse/LOG-5698"
},
{
"category": "external",
"summary": "LOG-5750",
"url": "https://issues.redhat.com/browse/LOG-5750"
},
{
"category": "external",
"summary": "LOG-5761",
"url": "https://issues.redhat.com/browse/LOG-5761"
},
{
"category": "external",
"summary": "LOG-5776",
"url": "https://issues.redhat.com/browse/LOG-5776"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4335.json"
}
],
"title": "Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.8.9",
"tracking": {
"current_release_date": "2026-07-01T13:56:09+00:00",
"generator": {
"date": "2026-07-01T13:56:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:4335",
"initial_release_date": "2024-07-17T13:48:25+00:00",
"revision_history": [
{
"date": "2024-07-17T13:48:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-17T13:48:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:56:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOL 5.8 for RHEL 9",
"product": {
"name": "RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:5.8::el9"
}
}
}
],
"category": "product_family",
"name": "logging for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.8.9-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"product": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"product_id": "openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator\u0026tag=v5.8.9-6"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9\u0026tag=v1.0.0-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-256"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"product": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"product_id": "openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel9\u0026tag=v5.8.1-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"product_id": "openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel9\u0026tag=v6.8.1-428"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-275"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"product_id": "openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.8.9-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"product_id": "openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.28.1-69"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.8.9-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.8.9-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-604"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-262"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.8.9-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"product": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"product_id": "openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator\u0026tag=v5.8.9-6"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"product_id": "openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9\u0026tag=v1.0.0-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-256"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"product": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"product_id": "openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel9\u0026tag=v5.8.1-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"product": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"product_id": "openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel9\u0026tag=v6.8.1-428"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-275"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"product_id": "openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.8.9-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"product_id": "openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.28.1-69"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.8.9-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.8.9-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-604"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-262"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.8.9-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"product": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"product_id": "openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=v5.8.9-22"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"product": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"product_id": "openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator\u0026tag=v5.8.9-6"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"product": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"product_id": "openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-operator-bundle\u0026tag=v5.8.9-18"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9\u0026tag=v1.0.0-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-256"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"product": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"product_id": "openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel9\u0026tag=v5.8.1-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"product_id": "openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel9\u0026tag=v6.8.1-428"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-275"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"product_id": "openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.8.9-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"product_id": "openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.28.1-69"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.8.9-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"product": {
"name": "openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"product_id": "openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-operator-bundle\u0026tag=v5.8.9-28"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.8.9-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-604"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-262"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"product": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"product_id": "openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=v5.8.9-9"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"product_id": "openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator\u0026tag=v5.8.9-6"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"product_id": "openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9\u0026tag=v1.0.0-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"product_id": "openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=v1.1.0-256"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"product": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"product_id": "openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel9\u0026tag=v5.8.1-501"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"product_id": "openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel9\u0026tag=v6.8.1-428"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"product": {
"name": "openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"product_id": "openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=v0.4.0-275"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"product": {
"name": "openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"product_id": "openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel9\u0026tag=v5.8.9-2"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"product": {
"name": "openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"product_id": "openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=v3.1.0-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le",
"product": {
"name": "openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le",
"product_id": "openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=v0.28.1-69"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"product_id": "openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel9\u0026tag=v5.8.9-4"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"product": {
"name": "openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"product_id": "openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=v5.8.9-13"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"product_id": "openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=v0.1.0-604"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"product": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"product_id": "openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=v0.1.0-262"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64"
},
"product_reference": "openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x"
},
"product_reference": "openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64"
},
"product_reference": "openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x"
},
"product_reference": "openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64"
},
"product_reference": "openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64"
},
"product_reference": "openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x"
},
"product_reference": "openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64"
},
"product_reference": "openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x"
},
"product_reference": "openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le"
},
"product_reference": "openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x"
},
"product_reference": "openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64"
},
"product_reference": "openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64"
},
"product_reference": "openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x"
},
"product_reference": "openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64"
},
"product_reference": "openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64"
},
"product_reference": "openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x"
},
"product_reference": "openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64 as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"relates_to_product_reference": "9Base-RHOL-5.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le as a component of RHOL 5.8 for RHEL 9",
"product_id": "9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le"
},
"product_reference": "openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le",
"relates_to_product_reference": "9Base-RHOL-5.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:48:25+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html\n\nFor Red Hat OpenShift Logging 5.8, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.13/logging/cluster-logging-upgrading.html",
"product_ids": [
"9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHOL-5.8:openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d_arm64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d_ppc64le",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2_amd64",
"9Base-RHOL-5.8:openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45_amd64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547_arm64",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610_s390x",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c_ppc64le",
"9Base-RHOL-5.8:openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2_ppc64le",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906_s390x",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b_amd64",
"9Base-RHOL-5.8:openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228_ppc64le",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233_amd64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5_arm64",
"9Base-RHOL-5.8:openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df_s390x",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3_ppc64le",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52_arm64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f_amd64",
"9Base-RHOL-5.8:openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b_amd64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7_arm64",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786_s390x",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6_ppc64le",
"9Base-RHOL-5.8:openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34_s390x",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf_amd64",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac_ppc64le",
"9Base-RHOL-5.8:openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718_arm64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3_s390x",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf_ppc64le",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106_amd64",
"9Base-RHOL-5.8:openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd_arm64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8_ppc64le",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b_amd64",
"9Base-RHOL-5.8:openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e_amd64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb_s390x",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e_arm64",
"9Base-RHOL-5.8:openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
RHSA-2024:4336
Vulnerability from csaf_redhat - Published: 2024-07-25 06:35 - Updated: 2026-07-01 13:56A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Moderate -- Logging for Red Hat OpenShift - 5.6.21",
"title": "Topic"
},
{
"category": "general",
"text": "Logging for Red Hat OpenShift - 5.6.21\ngolang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4336",
"url": "https://access.redhat.com/errata/RHSA-2024:4336"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "LOG-5751",
"url": "https://issues.redhat.com/browse/LOG-5751"
},
{
"category": "external",
"summary": "LOG-5802",
"url": "https://issues.redhat.com/browse/LOG-5802"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4336.json"
}
],
"title": "Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.6.21",
"tracking": {
"current_release_date": "2026-07-01T13:56:11+00:00",
"generator": {
"date": "2026-07-01T13:56:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2024:4336",
"initial_release_date": "2024-07-25T06:35:28+00:00",
"revision_history": [
{
"date": "2024-07-25T06:35:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-25T06:35:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T13:56:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOL 5.6 for RHEL 8",
"product": {
"name": "RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:5.6::el8"
}
}
}
],
"category": "product_family",
"name": "logging for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.6.21-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"product": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"product_id": "openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=v5.6.21-19"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.6.21-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"product": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"product_id": "openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-operator-bundle\u0026tag=v5.6.21-19"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-258"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-429"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-277"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"product_id": "openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-225"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"product_id": "openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-450"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v3.1.0-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"product_id": "openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-133"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.6.21-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"product": {
"name": "openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"product_id": "openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-operator-bundle\u0026tag=v5.6.21-33"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.6.21-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-610"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-267"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.6.21-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.6.21-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-258"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-429"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-277"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"product_id": "openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-225"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"product_id": "openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-450"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v3.1.0-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"product_id": "openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-133"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.6.21-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.6.21-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-610"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-267"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.6.21-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.6.21-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-258"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-429"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-277"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"product_id": "openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-225"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"product_id": "openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-450"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v3.1.0-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"product_id": "openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-133"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.6.21-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.6.21-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-610"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-267"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"product": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"product_id": "openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel8-operator\u0026tag=v5.6.21-8"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"product": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"product_id": "openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-rhel8-operator\u0026tag=v5.6.21-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"product": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"product_id": "openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel8\u0026tag=v1.0.0-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"product": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"product_id": "openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel8\u0026tag=v1.1.0-258"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"product": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"product_id": "openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-curator5-rhel8\u0026tag=v5.8.1-503"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"product": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"product_id": "openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"product_identification_helper": {
"purl": "pkg:oci/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/elasticsearch6-rhel8\u0026tag=v6.8.1-429"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"product": {
"name": "openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"product_id": "openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel8\u0026tag=v0.4.0-277"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"product": {
"name": "openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"product_id": "openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/fluentd-rhel8\u0026tag=v1.14.6-225"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"product": {
"name": "openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"product_id": "openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/kibana6-rhel8\u0026tag=v6.8.1-450"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"product": {
"name": "openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"product_id": "openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel8\u0026tag=v3.1.0-7"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64",
"product": {
"name": "openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64",
"product_id": "openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel8\u0026tag=v0.21.0-133"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"product": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"product_id": "openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-view-plugin-rhel8\u0026tag=v5.6.21-3"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"product": {
"name": "openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"product_id": "openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel8-operator\u0026tag=v5.6.21-14"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"product": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"product_id": "openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel8\u0026tag=v0.1.0-610"
}
}
},
{
"category": "product_version",
"name": "openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"product": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"product_id": "openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel8\u0026tag=v0.1.0-267"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64"
},
"product_reference": "openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64"
},
"product_reference": "openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64"
},
"product_reference": "openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x"
},
"product_reference": "openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x"
},
"product_reference": "openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64"
},
"product_reference": "openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64"
},
"product_reference": "openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x"
},
"product_reference": "openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64"
},
"product_reference": "openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le"
},
"product_reference": "openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x"
},
"product_reference": "openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64"
},
"product_reference": "openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64"
},
"product_reference": "openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64"
},
"product_reference": "openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le"
},
"product_reference": "openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64"
},
"product_reference": "openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"relates_to_product_reference": "8Base-RHOL-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64 as a component of RHOL 5.6 for RHEL 8",
"product_id": "8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64"
},
"product_reference": "openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64",
"relates_to_product_reference": "8Base-RHOL-5.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-25T06:35:28+00:00",
"details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html\n\nFor Red Hat OpenShift Logging 5.6, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.11/logging/cluster-logging-upgrading.html",
"product_ids": [
"8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4336"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOL-5.6:openshift-logging/cluster-logging-operator-bundle@sha256:f0c7f973a6671922dba09d54e3e375ba92e709d9748bc3aa0917950c447d476b_amd64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:8a8ea793de1950a7500ada1349957ee897bbc92d0e6b1b2dc3a94086e37026bd_s390x",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:c543700f991705cbcd7dec848a33aa11d43f1066101386425ec87e5305fdb0a4_arm64",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cb51fffe10d6927f952ff20b3195f6b87d272438841c8080329f89062e3cfaf1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/cluster-logging-rhel8-operator@sha256:cf6652034c982e98ca26c66b30520bc054dcd77fdc47b70f738f2c2e0d2c1b7a_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-operator-bundle@sha256:3173257e18b576505a7fb99e0033b93710dcf53a91ad0a2c14bcfcc6e5946f0b_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:552bb1ff9284e57d4b25bee5725cdbed86391c8670cabe19b5f5944cee97de56_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:57ce0f6e9ad69f16bfc376ca3208f7e817109be443e12bc176a9aa92f84697f0_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:6f8cd18f11c9bd89837d20b447d5a8e10f4ec1e6008b948e0c26a21d67095f44_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-proxy-rhel8@sha256:7b47105ef5b5948ac68da4b7b4b7f9626c5f54136fa02089cf5d843cb818af56_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:5a8d087ac29de2cc8a097d34bd1e7672f71e23f31ff8ba30a90e61b8565326b1_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:74329e256eb778d60d95fe17eea9dbe0e558e273c0a13f2b6e20ce15d95d4845_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:dc4f4c99b199778d00fc806f6a5e39807ea5f57a542e3dbb4639fcaeed9786e3_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch-rhel8-operator@sha256:f29a14585280e194481d3c7fb2fb0731fb77b16611b7cf12779a3b76eccaea0e_s390x",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:01e82eaa2e7cc6729fa5651b1c0dc3722a3d43fd1cc86781f7cf7408ddfc7433_ppc64le",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:452fe7f7e81a32ef4a01e5c9c4609c9e5b2610f0a3fd2640630c40d165069b81_arm64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:ac0c7db659086c51bc9b233211d35ebc6f203ff23e5bdd9381b1d591f8837dd2_amd64",
"8Base-RHOL-5.6:openshift-logging/elasticsearch6-rhel8@sha256:c8b2a6313f16c9ebc3a4b28fe83ac6c31ab2886e7d3133f53050ef3e2438b678_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:501381dce195b552927f41ff453d292b3469568543fc50b1ace4188b116bdfd4_arm64",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:b8f3a8951584e5dd48d81b3b313000457a46dd43c385ce7345da8af0ae96f1b4_s390x",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:bc73cd641871507626a9d7562a1c42523911870e6d86337bf68572b725214770_ppc64le",
"8Base-RHOL-5.6:openshift-logging/eventrouter-rhel8@sha256:cd7d8ec90cdaa68213d0e17031b2c055ee42ab2bfc3ac2d45a5ab6e6b2f4f0f4_amd64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:4ab46cf42f8bac99563c8b75e953889e273c4df91c7f119024934448c7a97ac6_arm64",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:67f4ec5a70c608db7a1231bd6ed2117ba98bb0103bdaebca1d1be6ecad0028ac_ppc64le",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:9be10707846705b608da869251ebaaf5f09d4954c06fad4108f077f34050c30b_s390x",
"8Base-RHOL-5.6:openshift-logging/fluentd-rhel8@sha256:f20d15a2e6ce32912b424d58d93ca7721caa7d4a2c024a8edbc73eb9ea6a2bde_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:3f15f6d38d920a6455c00d37f1c2fbdfa010436e38561f829106630b6f7ea02b_ppc64le",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:7bce3d479f76c0527628cf313437036ef466abc4f240d2dbe5c956e627d9e25c_amd64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:89ee60877d14b85d0f60d4ea3a35960c9aa1e17c1f92c2b0ab1e2d00072c19da_arm64",
"8Base-RHOL-5.6:openshift-logging/kibana6-rhel8@sha256:d1134055d31f38c84bc423ad7b2feeb2142a15431cbf1731110d3616254f2b47_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:12df3dbdf02fb0b6663450e70ee01987a18f23ee0564495b7c93d7fab051be58_ppc64le",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:7c5468c8ceea35ff8b74687a869888a13d2f14fca7584a0d53071c90ffc6c3c7_s390x",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:819c91382b79072c68cb948b481da907c8b438ec31665e334368a9f8727088e2_arm64",
"8Base-RHOL-5.6:openshift-logging/log-file-metric-exporter-rhel8@sha256:8d2f17e75ffc35a226a6ad3c2fa563dd9a9c4db9fedcd3d8f8c5b4e174e1f984_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:3511098ceac62747c79e75d840840485be13d80c07e81d05328ae3e409486de5_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:48bd107399a7828094f0972e5e73dde8a70659991385d6670e7b77e5bb373da7_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:4d41be569721decb69af1677bb3b1872343c5b90b01e9e86eff7686b46fa60ae_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-curator5-rhel8@sha256:670cfa847403e3c4d659cd7d5e6eefd4f5c2a95394f28382f9d427a76310e8b7_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:336423a236cab8bd0cfa48a370335813acb3810bcda184fb48ff7251afe564e9_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:55ed617c12aa6891bdbab5a96108fa6ec0587dca42d3723fb59fc5b5b2825791_amd64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:6e1f1c1fd7aa6fdeeb7131191b9fd5ea59d2f04aaa95ff1095c5a6ef371562b9_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-loki-rhel8@sha256:db4f8f5db2fd1e463ae0cca74d3a3875d2c69823723e5cf35832c4cda9dbf4d4_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:4e84450d5b388e865a236be4e846bfa0b1cac6e7f425fc88652272bf965b7ddb_arm64",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:5d63958ff12f1df2d871d59b2c7d7bab640c80ff5806dc02301fc6b376d5e3f3_ppc64le",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:7618afac6af12c0894a052f43bab91eaa821bc047d2e29f9057df539b358caf0_s390x",
"8Base-RHOL-5.6:openshift-logging/logging-view-plugin-rhel8@sha256:f5016ec5df1ab51297badbc0d8b5b9fe7907483c1437c7fc4a492b395b8d50fa_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-operator-bundle@sha256:b4ec785aaf347a600c5e2e01ad8991aae64f3a8fee8a60913a43ff1e2bc6b9b4_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:25628e336877831c3b91734d00d1ce228eefff928530aea4f66278d7db1c30f2_amd64",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:472921aeae32f06f1cac7d8ec2342248cbb89df018b67c3d218309a2ac3ad192_s390x",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:87d5a6076450ee9e5be4997040285f88f32f1b1adfa5ff45fc717516e6ff385d_ppc64le",
"8Base-RHOL-5.6:openshift-logging/loki-rhel8-operator@sha256:9c0d84054b2b1b15c162d9f9d67985141854e161fd17a551b66ab980f1848fdd_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:2134b1c63081b9055af6d33173bd2da6e34fff0ffbb32dc76f555d44f522cb21_amd64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:b348f4fcc95a2f85d683e6545deb0cfcf898825794b6f167c0534285dadb9fdf_s390x",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:c837f5c19e8f647464bd8a762d5f879efefeddd68b2499d7d56d18b68f60b79c_arm64",
"8Base-RHOL-5.6:openshift-logging/lokistack-gateway-rhel8@sha256:f945d9eae056870d1fed3a4e558c5b2434495484702511ec9eb154cd2d7233b6_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:70c6541b55c9a4a1c0804ba87e19bcab62d9815ad3ea926001e5b13af176010c_s390x",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:7c79b709f3125188b929b21b5756a34917c13289283a29bf4355505779916734_ppc64le",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:c613c19ad0794ad55018279c41da2bab8fd70785b82198bba854e80e479d4119_amd64",
"8Base-RHOL-5.6:openshift-logging/opa-openshift-rhel8@sha256:d9e0e9b7f9daf1a994581c49f2e8d6239e8f7a3e2dabe055fd529c28e76a8d70_arm64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:83840bf762b6979bddd55e12e5951bffe58c25c62245b0bc0856205070b45ff1_amd64",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:9e64ac8d7b9471e3899abbf588e00c358a83c3e37b6c18bf9555c2f8d2b1932a_ppc64le",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ea08a0a1bcd7422b30a2706362d0f5e28c52132855c90daf2d11249140506491_s390x",
"8Base-RHOL-5.6:openshift-logging/vector-rhel8@sha256:ef03d6ffbad465a183fbcc234c183ad8e71f85245969db9698623d3ae9503d95_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.