Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-22870 (GCVE-0-2025-22870)
Vulnerability from cvelistv5 – Published: 2025-03-12 18:27 – Updated: 2026-04-16 22:39
VLAI
EPSS
Title
HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net
Summary
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.
Severity
4.4 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-115 Misinterpretation of Input
- CWE-115 - Misinterpretation of Input
Assigner
References
Impacted products
3 products
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/http |
Affected:
0 , < 1.23.7
(semver)
Affected: 1.24.0-0 , < 1.24.1 (semver) |
|
| golang.org/x/net | golang.org/x/net/http/httpproxy |
Affected:
0 , < 0.36.0
(semver)
|
|
| golang.org/x/net | golang.org/x/net/proxy |
Affected:
0 , < 0.36.0
(semver)
|
Credits
Juho Forsén of Mattermost
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-05-09T20:03:37.043Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2025/03/07/2"
},
{
"url": "https://security.netapp.com/advisory/ntap-20250509-0007/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-22870",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-03-18T16:31:16.493335Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-115",
"description": "CWE-115 Misinterpretation of Input",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-18T16:32:14.847Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/http",
"product": "net/http",
"programRoutines": [
{
"name": "envProxyFunc"
},
{
"name": "ProxyFromEnvironment"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.23.7",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.24.1",
"status": "affected",
"version": "1.24.0-0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/net/http/httpproxy",
"product": "golang.org/x/net/http/httpproxy",
"programRoutines": [
{
"name": "config.useProxy"
},
{
"name": "domainMatch.match"
}
],
"vendor": "golang.org/x/net",
"versions": [
{
"lessThan": "0.36.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/net/proxy",
"product": "golang.org/x/net/proxy",
"programRoutines": [
{
"name": "PerHost.dialerForRequest"
},
{
"name": "PerHost.AddFromString"
},
{
"name": "Dial"
},
{
"name": "FromEnvironment"
},
{
"name": "FromEnvironmentUsing"
},
{
"name": "PerHost.Dial"
},
{
"name": "PerHost.DialContext"
}
],
"vendor": "golang.org/x/net",
"versions": [
{
"lessThan": "0.36.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Juho Fors\u00e9n of Mattermost"
}
],
"descriptions": [
{
"lang": "en",
"value": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-115 Misinterpretation of Input",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-16T22:39:33.619Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/654697"
},
{
"url": "https://go.dev/issue/71984"
},
{
"url": "https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-3503"
}
],
"title": "HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-22870",
"datePublished": "2025-03-12T18:27:59.376Z",
"dateReserved": "2025-01-08T19:11:42.834Z",
"dateUpdated": "2026-04-16T22:39:33.619Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-22870",
"date": "2026-06-21",
"epss": "0.0035",
"percentile": "0.26722"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-22870\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-03-12T19:15:38.310\",\"lastModified\":\"2026-04-16T23:16:32.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \\\"*.example.com\\\", a request to \\\"[::1%25.example.com]:80` will incorrectly match and not be proxied.\"},{\"lang\":\"es\",\"value\":\"La coincidencia de hosts con patrones de proxy puede tratar incorrectamente un ID de zona IPv6 como un componente de nombre de host. Por ejemplo, si la variable de entorno NO_PROXY se establece en \\\"*.example.com\\\", una solicitud a \\\"[::1%25.example.com]:80` coincidir\u00e1 incorrectamente y no se procesar\u00e1 mediante proxy.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L\",\"baseScore\":4.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.8,\"impactScore\":2.5}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-115\"}]}],\"references\":[{\"url\":\"https://go.dev/cl/654697\",\"source\":\"security@golang.org\"},{\"url\":\"https://go.dev/issue/71984\",\"source\":\"security@golang.org\"},{\"url\":\"https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ\",\"source\":\"security@golang.org\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-3503\",\"source\":\"security@golang.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/03/07/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20250509-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2025/03/07/2\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20250509-0007/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-05-09T20:03:37.043Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.4, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-22870\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-18T16:31:16.493335Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-115\", \"description\": \"CWE-115 Misinterpretation of Input\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-18T16:31:44.113Z\"}}], \"cna\": {\"title\": \"HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net\", \"credits\": [{\"lang\": \"en\", \"value\": \"Juho Fors\\u00e9n of Mattermost\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/http\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.23.7\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.24.0-0\", \"lessThan\": \"1.24.1\", \"versionType\": \"semver\"}], \"packageName\": \"net/http\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"envProxyFunc\"}, {\"name\": \"ProxyFromEnvironment\"}]}, {\"vendor\": \"golang.org/x/net\", \"product\": \"golang.org/x/net/http/httpproxy\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.36.0\", \"versionType\": \"semver\"}], \"packageName\": \"golang.org/x/net/http/httpproxy\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"config.useProxy\"}, {\"name\": \"domainMatch.match\"}]}, {\"vendor\": \"golang.org/x/net\", \"product\": \"golang.org/x/net/proxy\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.36.0\", \"versionType\": \"semver\"}], \"packageName\": \"golang.org/x/net/proxy\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"PerHost.dialerForRequest\"}, {\"name\": \"PerHost.AddFromString\"}, {\"name\": \"Dial\"}, {\"name\": \"FromEnvironment\"}, {\"name\": \"FromEnvironmentUsing\"}, {\"name\": \"PerHost.Dial\"}, {\"name\": \"PerHost.DialContext\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/654697\"}, {\"url\": \"https://go.dev/issue/71984\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-3503\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \\\"*.example.com\\\", a request to \\\"[::1%25.example.com]:80` will incorrectly match and not be proxied.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-115 Misinterpretation of Input\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-04-16T22:39:33.619Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-22870\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-16T22:39:33.619Z\", \"dateReserved\": \"2025-01-08T19:11:42.834Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2025-03-12T18:27:59.376Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
OPENSUSE-SU-2025:15253-1
Vulnerability from csaf_opensuse - Published: 2025-07-03 00:00 - Updated: 2025-07-03 00:00Summary
opa-1.6.0-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: opa-1.6.0-1.1 on GA media
Description of the patch: These are all security issues fixed in the opa-1.6.0-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15253
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.4 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "opa-1.6.0-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the opa-1.6.0-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15253",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15253-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46569 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46569/"
}
],
"title": "opa-1.6.0-1.1 on GA media",
"tracking": {
"current_release_date": "2025-07-03T00:00:00Z",
"generator": {
"date": "2025-07-03T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15253-1",
"initial_release_date": "2025-07-03T00:00:00Z",
"revision_history": [
{
"date": "2025-07-03T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "opa-1.6.0-1.1.aarch64",
"product": {
"name": "opa-1.6.0-1.1.aarch64",
"product_id": "opa-1.6.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "opa-bash-completion-1.6.0-1.1.aarch64",
"product": {
"name": "opa-bash-completion-1.6.0-1.1.aarch64",
"product_id": "opa-bash-completion-1.6.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "opa-fish-completion-1.6.0-1.1.aarch64",
"product": {
"name": "opa-fish-completion-1.6.0-1.1.aarch64",
"product_id": "opa-fish-completion-1.6.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "opa-zsh-completion-1.6.0-1.1.aarch64",
"product": {
"name": "opa-zsh-completion-1.6.0-1.1.aarch64",
"product_id": "opa-zsh-completion-1.6.0-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "opa-1.6.0-1.1.ppc64le",
"product": {
"name": "opa-1.6.0-1.1.ppc64le",
"product_id": "opa-1.6.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "opa-bash-completion-1.6.0-1.1.ppc64le",
"product": {
"name": "opa-bash-completion-1.6.0-1.1.ppc64le",
"product_id": "opa-bash-completion-1.6.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "opa-fish-completion-1.6.0-1.1.ppc64le",
"product": {
"name": "opa-fish-completion-1.6.0-1.1.ppc64le",
"product_id": "opa-fish-completion-1.6.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "opa-zsh-completion-1.6.0-1.1.ppc64le",
"product": {
"name": "opa-zsh-completion-1.6.0-1.1.ppc64le",
"product_id": "opa-zsh-completion-1.6.0-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "opa-1.6.0-1.1.s390x",
"product": {
"name": "opa-1.6.0-1.1.s390x",
"product_id": "opa-1.6.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "opa-bash-completion-1.6.0-1.1.s390x",
"product": {
"name": "opa-bash-completion-1.6.0-1.1.s390x",
"product_id": "opa-bash-completion-1.6.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "opa-fish-completion-1.6.0-1.1.s390x",
"product": {
"name": "opa-fish-completion-1.6.0-1.1.s390x",
"product_id": "opa-fish-completion-1.6.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "opa-zsh-completion-1.6.0-1.1.s390x",
"product": {
"name": "opa-zsh-completion-1.6.0-1.1.s390x",
"product_id": "opa-zsh-completion-1.6.0-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "opa-1.6.0-1.1.x86_64",
"product": {
"name": "opa-1.6.0-1.1.x86_64",
"product_id": "opa-1.6.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "opa-bash-completion-1.6.0-1.1.x86_64",
"product": {
"name": "opa-bash-completion-1.6.0-1.1.x86_64",
"product_id": "opa-bash-completion-1.6.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "opa-fish-completion-1.6.0-1.1.x86_64",
"product": {
"name": "opa-fish-completion-1.6.0-1.1.x86_64",
"product_id": "opa-fish-completion-1.6.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "opa-zsh-completion-1.6.0-1.1.x86_64",
"product": {
"name": "opa-zsh-completion-1.6.0-1.1.x86_64",
"product_id": "opa-zsh-completion-1.6.0-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-1.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64"
},
"product_reference": "opa-1.6.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-1.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le"
},
"product_reference": "opa-1.6.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-1.6.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-1.6.0-1.1.s390x"
},
"product_reference": "opa-1.6.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-1.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64"
},
"product_reference": "opa-1.6.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-bash-completion-1.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64"
},
"product_reference": "opa-bash-completion-1.6.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-bash-completion-1.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le"
},
"product_reference": "opa-bash-completion-1.6.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-bash-completion-1.6.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x"
},
"product_reference": "opa-bash-completion-1.6.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-bash-completion-1.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64"
},
"product_reference": "opa-bash-completion-1.6.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-fish-completion-1.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64"
},
"product_reference": "opa-fish-completion-1.6.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-fish-completion-1.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le"
},
"product_reference": "opa-fish-completion-1.6.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-fish-completion-1.6.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x"
},
"product_reference": "opa-fish-completion-1.6.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-fish-completion-1.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64"
},
"product_reference": "opa-fish-completion-1.6.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-zsh-completion-1.6.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64"
},
"product_reference": "opa-zsh-completion-1.6.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-zsh-completion-1.6.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le"
},
"product_reference": "opa-zsh-completion-1.6.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-zsh-completion-1.6.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x"
},
"product_reference": "opa-zsh-completion-1.6.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "opa-zsh-completion-1.6.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
},
"product_reference": "opa-zsh-completion-1.6.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-03T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-46569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46569"
}
],
"notes": [
{
"category": "general",
"text": "Open Policy Agent (OPA) is an open source, general-purpose policy engine. Prior to version 1.4.0, when run as a server, OPA exposes an HTTP Data API for reading and writing documents. Requesting a virtual document through the Data API entails policy evaluation, where a Rego query containing a single data document reference is constructed from the requested path. This query is then used for policy evaluation. A HTTP request path can be crafted in a way that injects Rego code into the constructed query. The evaluation result cannot be made to return any other data than what is generated by the requested path, but this path can be misdirected, and the injected Rego code can be crafted to make the query succeed or fail; opening up for oracle attacks or, given the right circumstances, erroneous policy decision results. Furthermore, the injected code can be crafted to be computationally expensive, resulting in a Denial Of Service (DoS) attack. This issue has been patched in version 1.4.0. A workaround involves having network access to OPA\u0027s RESTful APIs being limited to `localhost` and/or trusted networks, unless necessary for production reasons.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46569",
"url": "https://www.suse.com/security/cve/CVE-2025-46569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:opa-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-bash-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-fish-completion-1.6.0-1.1.x86_64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.aarch64",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.ppc64le",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.s390x",
"openSUSE Tumbleweed:opa-zsh-completion-1.6.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-03T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-46569"
}
]
}
OPENSUSE-SU-2025:15487-1
Vulnerability from csaf_opensuse - Published: 2025-08-25 00:00 - Updated: 2025-08-25 00:00Summary
cheat-4.4.2-2.1 on GA media
Severity
Moderate
Notes
Title of the patch: cheat-4.4.2-2.1 on GA media
Description of the patch: These are all security issues fixed in the cheat-4.4.2-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15487
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
18 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cheat-4.4.2-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cheat-4.4.2-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15487",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15487-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-48795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-48795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
}
],
"title": "cheat-4.4.2-2.1 on GA media",
"tracking": {
"current_release_date": "2025-08-25T00:00:00Z",
"generator": {
"date": "2025-08-25T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15487-1",
"initial_release_date": "2025-08-25T00:00:00Z",
"revision_history": [
{
"date": "2025-08-25T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.aarch64",
"product": {
"name": "cheat-4.4.2-2.1.aarch64",
"product_id": "cheat-4.4.2-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.ppc64le",
"product": {
"name": "cheat-4.4.2-2.1.ppc64le",
"product_id": "cheat-4.4.2-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.s390x",
"product": {
"name": "cheat-4.4.2-2.1.s390x",
"product_id": "cheat-4.4.2-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.x86_64",
"product": {
"name": "cheat-4.4.2-2.1.x86_64",
"product_id": "cheat-4.4.2-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64"
},
"product_reference": "cheat-4.4.2-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le"
},
"product_reference": "cheat-4.4.2-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x"
},
"product_reference": "cheat-4.4.2-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
},
"product_reference": "cheat-4.4.2-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-48795"
}
],
"notes": [
{
"category": "general",
"text": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-48795",
"url": "https://www.suse.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "SUSE Bug 1217950 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1217950"
},
{
"category": "external",
"summary": "SUSE Bug 1218708 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1218708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2025-21613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21613"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only happens when the file transport protocol is being used, as that is the only protocol that shells out to git binaries. This vulnerability is fixed in 5.13.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21613",
"url": "https://www.suse.com/security/cve/CVE-2025-21613"
},
{
"category": "external",
"summary": "SUSE Bug 1235572 for CVE-2025-21613",
"url": "https://bugzilla.suse.com/1235572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-21613"
},
{
"cve": "CVE-2025-21614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21614",
"url": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-21614"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
}
]
}
OPENSUSE-SU-2025:15488-1
Vulnerability from csaf_opensuse - Published: 2025-08-25 00:00 - Updated: 2025-08-25 00:00Summary
cheat-4.4.2-2.1 on GA media
Severity
Moderate
Notes
Title of the patch: cheat-4.4.2-2.1 on GA media
Description of the patch: These are all security issues fixed in the cheat-4.4.2-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15488
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
18 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cheat-4.4.2-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cheat-4.4.2-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15488",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15488-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-48795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-48795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
}
],
"title": "cheat-4.4.2-2.1 on GA media",
"tracking": {
"current_release_date": "2025-08-25T00:00:00Z",
"generator": {
"date": "2025-08-25T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15488-1",
"initial_release_date": "2025-08-25T00:00:00Z",
"revision_history": [
{
"date": "2025-08-25T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.aarch64",
"product": {
"name": "cheat-4.4.2-2.1.aarch64",
"product_id": "cheat-4.4.2-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.ppc64le",
"product": {
"name": "cheat-4.4.2-2.1.ppc64le",
"product_id": "cheat-4.4.2-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.s390x",
"product": {
"name": "cheat-4.4.2-2.1.s390x",
"product_id": "cheat-4.4.2-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-2.1.x86_64",
"product": {
"name": "cheat-4.4.2-2.1.x86_64",
"product_id": "cheat-4.4.2-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64"
},
"product_reference": "cheat-4.4.2-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le"
},
"product_reference": "cheat-4.4.2-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x"
},
"product_reference": "cheat-4.4.2-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
},
"product_reference": "cheat-4.4.2-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-48795"
}
],
"notes": [
{
"category": "general",
"text": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-48795",
"url": "https://www.suse.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "SUSE Bug 1217950 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1217950"
},
{
"category": "external",
"summary": "SUSE Bug 1218708 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1218708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2025-21613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21613"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only happens when the file transport protocol is being used, as that is the only protocol that shells out to git binaries. This vulnerability is fixed in 5.13.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21613",
"url": "https://www.suse.com/security/cve/CVE-2025-21613"
},
{
"category": "external",
"summary": "SUSE Bug 1235572 for CVE-2025-21613",
"url": "https://bugzilla.suse.com/1235572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-21613"
},
{
"cve": "CVE-2025-21614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21614",
"url": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-21614"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cheat-4.4.2-2.1.aarch64",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.ppc64le",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.s390x",
"openSUSE Tumbleweed:cheat-4.4.2-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
}
]
}
OPENSUSE-SU-2025:15779-1
Vulnerability from csaf_opensuse - Published: 2025-11-28 00:00 - Updated: 2025-11-28 00:00Summary
helm3-3.19.2-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: helm3-3.19.2-1.1 on GA media
Description of the patch: These are all security issues fixed in the helm3-3.19.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15779
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.7 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.1 (Critical)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.4 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.4 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
70 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "helm3-3.19.2-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the helm3-3.19.2-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15779",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15779-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16873 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16874 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16875 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21272 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1996 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23524 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23524/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23525 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23525/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23526 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23526/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-36055 page",
"url": "https://www.suse.com/security/cve/CVE-2022-36055/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-25165 page",
"url": "https://www.suse.com/security/cve/CVE-2023-25165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-25173 page",
"url": "https://www.suse.com/security/cve/CVE-2023-25173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-25620 page",
"url": "https://www.suse.com/security/cve/CVE-2024-25620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26147 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45338 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22872 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-53547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-53547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
}
],
"title": "helm3-3.19.2-1.1 on GA media",
"tracking": {
"current_release_date": "2025-11-28T00:00:00Z",
"generator": {
"date": "2025-11-28T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15779-1",
"initial_release_date": "2025-11-28T00:00:00Z",
"revision_history": [
{
"date": "2025-11-28T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "helm3-3.19.2-1.1.aarch64",
"product": {
"name": "helm3-3.19.2-1.1.aarch64",
"product_id": "helm3-3.19.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "helm3-bash-completion-3.19.2-1.1.aarch64",
"product": {
"name": "helm3-bash-completion-3.19.2-1.1.aarch64",
"product_id": "helm3-bash-completion-3.19.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "helm3-fish-completion-3.19.2-1.1.aarch64",
"product": {
"name": "helm3-fish-completion-3.19.2-1.1.aarch64",
"product_id": "helm3-fish-completion-3.19.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "helm3-zsh-completion-3.19.2-1.1.aarch64",
"product": {
"name": "helm3-zsh-completion-3.19.2-1.1.aarch64",
"product_id": "helm3-zsh-completion-3.19.2-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "helm3-3.19.2-1.1.ppc64le",
"product": {
"name": "helm3-3.19.2-1.1.ppc64le",
"product_id": "helm3-3.19.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "helm3-bash-completion-3.19.2-1.1.ppc64le",
"product": {
"name": "helm3-bash-completion-3.19.2-1.1.ppc64le",
"product_id": "helm3-bash-completion-3.19.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "helm3-fish-completion-3.19.2-1.1.ppc64le",
"product": {
"name": "helm3-fish-completion-3.19.2-1.1.ppc64le",
"product_id": "helm3-fish-completion-3.19.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
"product": {
"name": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
"product_id": "helm3-zsh-completion-3.19.2-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "helm3-3.19.2-1.1.s390x",
"product": {
"name": "helm3-3.19.2-1.1.s390x",
"product_id": "helm3-3.19.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "helm3-bash-completion-3.19.2-1.1.s390x",
"product": {
"name": "helm3-bash-completion-3.19.2-1.1.s390x",
"product_id": "helm3-bash-completion-3.19.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "helm3-fish-completion-3.19.2-1.1.s390x",
"product": {
"name": "helm3-fish-completion-3.19.2-1.1.s390x",
"product_id": "helm3-fish-completion-3.19.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "helm3-zsh-completion-3.19.2-1.1.s390x",
"product": {
"name": "helm3-zsh-completion-3.19.2-1.1.s390x",
"product_id": "helm3-zsh-completion-3.19.2-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "helm3-3.19.2-1.1.x86_64",
"product": {
"name": "helm3-3.19.2-1.1.x86_64",
"product_id": "helm3-3.19.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "helm3-bash-completion-3.19.2-1.1.x86_64",
"product": {
"name": "helm3-bash-completion-3.19.2-1.1.x86_64",
"product_id": "helm3-bash-completion-3.19.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "helm3-fish-completion-3.19.2-1.1.x86_64",
"product": {
"name": "helm3-fish-completion-3.19.2-1.1.x86_64",
"product_id": "helm3-fish-completion-3.19.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "helm3-zsh-completion-3.19.2-1.1.x86_64",
"product": {
"name": "helm3-zsh-completion-3.19.2-1.1.x86_64",
"product_id": "helm3-zsh-completion-3.19.2-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64"
},
"product_reference": "helm3-3.19.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le"
},
"product_reference": "helm3-3.19.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x"
},
"product_reference": "helm3-3.19.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64"
},
"product_reference": "helm3-3.19.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-bash-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64"
},
"product_reference": "helm3-bash-completion-3.19.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-bash-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le"
},
"product_reference": "helm3-bash-completion-3.19.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-bash-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x"
},
"product_reference": "helm3-bash-completion-3.19.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-bash-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64"
},
"product_reference": "helm3-bash-completion-3.19.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-fish-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64"
},
"product_reference": "helm3-fish-completion-3.19.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-fish-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le"
},
"product_reference": "helm3-fish-completion-3.19.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-fish-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x"
},
"product_reference": "helm3-fish-completion-3.19.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-fish-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64"
},
"product_reference": "helm3-fish-completion-3.19.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-zsh-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64"
},
"product_reference": "helm3-zsh-completion-3.19.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-zsh-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le"
},
"product_reference": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-zsh-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x"
},
"product_reference": "helm3-zsh-completion-3.19.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "helm3-zsh-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
},
"product_reference": "helm3-zsh-completion-3.19.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16873"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16873",
"url": "https://www.suse.com/security/cve/CVE-2018-16873"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-16873"
},
{
"cve": "CVE-2018-16874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16874"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16874",
"url": "https://www.suse.com/security/cve/CVE-2018-16874"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16874"
},
{
"cve": "CVE-2018-16875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16875"
}
],
"notes": [
{
"category": "general",
"text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16875",
"url": "https://www.suse.com/security/cve/CVE-2018-16875"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16875"
},
{
"cve": "CVE-2021-21272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21272"
}
],
"notes": [
{
"category": "general",
"text": "ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before version 0.9.0, there is a \"zip-slip\" vulnerability. The directory support feature allows the downloaded gzipped tarballs to be automatically extracted to the user-specified directory where the tarball can have symbolic links and hard links. A well-crafted tarball or tarballs allow malicious artifact providers linking, writing, or overwriting specific files on the host filesystem outside of the user-specified directory unexpectedly with the same permissions as the user who runs `oras pull`. Users of the affected versions are impacted if they are `oras` CLI users who runs `oras pull`, or if they are Go programs, which invoke `github.com/deislabs/oras/pkg/content.FileStore`. The problem has been fixed in version 0.9.0. For `oras` CLI users, there is no workarounds other than pulling from a trusted artifact provider. For `oras` package users, the workaround is to not use `github.com/deislabs/oras/pkg/content.FileStore`, and use other content stores instead, or pull from a trusted artifact provider.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21272",
"url": "https://www.suse.com/security/cve/CVE-2021-21272"
},
{
"category": "external",
"summary": "SUSE Bug 1181419 for CVE-2021-21272",
"url": "https://bugzilla.suse.com/1181419"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-21272"
},
{
"cve": "CVE-2022-1996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1996"
}
],
"notes": [
{
"category": "general",
"text": "Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1996",
"url": "https://www.suse.com/security/cve/CVE-2022-1996"
},
{
"category": "external",
"summary": "SUSE Bug 1200528 for CVE-2022-1996",
"url": "https://bugzilla.suse.com/1200528"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2022-1996"
},
{
"cve": "CVE-2022-23524",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23524"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to Uncontrolled Resource Consumption, resulting in Denial of Service. Input to functions in the _strvals_ package can cause a stack overflow. In Go, a stack overflow cannot be recovered from. Applications that use functions from the _strvals_ package in the Helm SDK can have a Denial of Service attack when they use this package and it panics. This issue has been patched in 3.10.3. SDK users can validate strings supplied by users won\u0027t create large arrays causing significant memory usage before passing them to the _strvals_ functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23524",
"url": "https://www.suse.com/security/cve/CVE-2022-23524"
},
{
"category": "external",
"summary": "SUSE Bug 1206467 for CVE-2022-23524",
"url": "https://bugzilla.suse.com/1206467"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2022-23524"
},
{
"cve": "CVE-2022-23525",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23525"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the _repo_package. The _repo_ package contains a handler that processes the index file of a repository. For example, the Helm client adds references to chart repositories where charts are managed. The _repo_ package parses the index file of the repository and loads it into structures Go can work with. Some index files can cause array data structures to be created causing a memory violation. Applications that use the _repo_ package in the Helm SDK to parse an index file can suffer a Denial of Service when that input causes a panic that cannot be recovered from. The Helm Client will panic with an index file that causes a memory violation panic. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been patched in 3.10.3. SDK users can validate index files that are correctly formatted before passing them to the _repo_ functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23525",
"url": "https://www.suse.com/security/cve/CVE-2022-23525"
},
{
"category": "external",
"summary": "SUSE Bug 1206469 for CVE-2022-23525",
"url": "https://bugzilla.suse.com/1206469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2022-23525"
},
{
"cve": "CVE-2022-23526",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23526"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the_chartutil_ package that can cause a segmentation violation. The _chartutil_ package contains a parser that loads a JSON Schema validation file. For example, the Helm client when rendering a chart will validate its values with the schema file. The _chartutil_ package parses the schema file and loads it into structures Go can work with. Some schema files can cause array data structures to be created causing a memory violation. Applications that use the _chartutil_ package in the Helm SDK to parse a schema file can suffer a Denial of Service when that input causes a panic that cannot be recovered from. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been patched in 3.10.3. SDK users can validate schema files that are correctly formatted before passing them to the _chartutil_ functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23526",
"url": "https://www.suse.com/security/cve/CVE-2022-23526"
},
{
"category": "external",
"summary": "SUSE Bug 1206471 for CVE-2022-23526",
"url": "https://bugzilla.suse.com/1206471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2022-23526"
},
{
"cve": "CVE-2022-36055",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-36055"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. Fuzz testing, provided by the CNCF, identified input to functions in the _strvals_ package that can cause an out of memory panic. The _strvals_ package contains a parser that turns strings in to Go structures. The _strvals_ package converts these strings into structures Go can work with. Some string inputs can cause array data structures to be created causing an out of memory panic. Applications that use the _strvals_ package in the Helm SDK to parse user supplied input can suffer a Denial of Service when that input causes a panic that cannot be recovered from. The Helm Client will panic with input to `--set`, `--set-string`, and other value setting flags that causes an out of memory panic. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been resolved in 3.9.4. SDK users can validate strings supplied by users won\u0027t create large arrays causing significant memory usage before passing them to the _strvals_ functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-36055",
"url": "https://www.suse.com/security/cve/CVE-2022-36055"
},
{
"category": "external",
"summary": "SUSE Bug 1203054 for CVE-2022-36055",
"url": "https://bugzilla.suse.com/1203054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-36055"
},
{
"cve": "CVE-2023-25165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-25165"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a DNS lookup. The DNS lookup happens when used with `helm install|upgrade|template` or when the Helm SDK is used to render a chart. Information passed into the chart can be disclosed to the DNS servers used to lookup the IP address. For example, a malicious chart could inject `getHostByName` into a chart in order to disclose values to a malicious DNS server. The issue has been fixed in Helm 3.11.1. Prior to using a chart with Helm verify the `getHostByName` function is not being used in a template to disclose any information you do not want passed to DNS servers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-25165",
"url": "https://www.suse.com/security/cve/CVE-2023-25165"
},
{
"category": "external",
"summary": "SUSE Bug 1208083 for CVE-2023-25165",
"url": "https://bugzilla.suse.com/1208083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-25165"
},
{
"cve": "CVE-2023-25173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-25173"
}
],
"notes": [
{
"category": "general",
"text": "containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases, potentially gaining access to sensitive information or gaining the ability to execute code in that container. Downstream applications that use the containerd client library may be affected as well.\n\nThis bug has been fixed in containerd v1.6.18 and v.1.5.18. Users should update to these versions and recreate containers to resolve this issue. Users who rely on a downstream application that uses containerd\u0027s client library should check that application for a separate advisory and instructions. As a workaround, ensure that the `\"USER $USERNAME\"` Dockerfile instruction is not used. Instead, set the container entrypoint to a value similar to `ENTRYPOINT [\"su\", \"-\", \"user\"]` to allow `su` to properly set up supplementary groups.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-25173",
"url": "https://www.suse.com/security/cve/CVE-2023-25173"
},
{
"category": "external",
"summary": "SUSE Bug 1208426 for CVE-2023-25173",
"url": "https://bugzilla.suse.com/1208426"
},
{
"category": "external",
"summary": "SUSE Bug 1215588 for CVE-2023-25173",
"url": "https://bugzilla.suse.com/1215588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-25173"
},
{
"cve": "CVE-2024-25620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-25620"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. When either the Helm client or SDK is used to save a chart whose name within the `Chart.yaml` file includes a relative path change, the chart would be saved outside its expected directory based on the changes in the relative path. The validation and linting did not detect the path changes in the name. This issue has been resolved in Helm v3.14.1. Users unable to upgrade should check all charts used by Helm for path changes in their name as found in the `Chart.yaml` file. This includes dependencies.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-25620",
"url": "https://www.suse.com/security/cve/CVE-2024-25620"
},
{
"category": "external",
"summary": "SUSE Bug 1219969 for CVE-2024-25620",
"url": "https://bugzilla.suse.com/1219969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-25620"
},
{
"cve": "CVE-2024-26147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26147"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an `index.yaml` file or a plugins `plugin.yaml` file were missing all metadata a panic would occur in Helm. In the Helm SDK, this is found when using the `LoadIndexFile` or `DownloadIndexFile` functions in the `repo` package or the `LoadDir` function in the `plugin` package. For the Helm client this impacts functions around adding a repository and all Helm functions if a malicious plugin is added as Helm inspects all known plugins on each invocation. This issue has been resolved in Helm v3.14.2. If a malicious plugin has been added which is causing all Helm client commands to panic, the malicious plugin can be manually removed from the filesystem. If using Helm SDK versions prior to 3.14.2, calls to affected functions can use `recover` to catch the panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26147",
"url": "https://www.suse.com/security/cve/CVE-2024-26147"
},
{
"category": "external",
"summary": "SUSE Bug 1220207 for CVE-2024-26147",
"url": "https://bugzilla.suse.com/1220207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-26147"
},
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
},
{
"cve": "CVE-2024-45338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45338"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45338",
"url": "https://www.suse.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "SUSE Bug 1234794 for CVE-2024-45338",
"url": "https://bugzilla.suse.com/1234794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-45338"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-22872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22872"
}
],
"notes": [
{
"category": "general",
"text": "The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. \u003cmath\u003e, \u003csvg\u003e, etc contexts).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22872",
"url": "https://www.suse.com/security/cve/CVE-2025-22872"
},
{
"category": "external",
"summary": "SUSE Bug 1241710 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1241710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22872"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-53547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-53547"
}
],
"notes": [
{
"category": "general",
"text": "Helm is a package manager for Charts for Kubernetes. Prior to 3.18.4, a specially crafted Chart.yaml file along with a specially linked Chart.lock file can lead to local code execution when dependencies are updated. Fields in a Chart.yaml file, that are carried over to a Chart.lock file when dependencies are updated and this file is written, can be crafted in a way that can cause execution if that same content were in a file that is executed (e.g., a bash.rc file or shell script). If the Chart.lock file is symlinked to one of these files updating dependencies will write the lock file content to the symlinked file. This can lead to unwanted execution. Helm warns of the symlinked file but did not stop execution due to symlinking. This issue has been resolved in Helm v3.18.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-53547",
"url": "https://www.suse.com/security/cve/CVE-2025-53547"
},
{
"category": "external",
"summary": "SUSE Bug 1246150 for CVE-2025-53547",
"url": "https://bugzilla.suse.com/1246150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-53547"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
"openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
}
]
}
OPENSUSE-SU-2025:20177-1
Vulnerability from csaf_opensuse - Published: 2025-12-18 00:17 - Updated: 2025-12-18 00:17Summary
Security update for cheat
Severity
Important
Notes
Title of the patch: Security update for cheat
Description of the patch: This update for cheat fixes the following issues:
- Security:
* CVE-2025-47913: Fix client process termination (bsc#1253593)
* CVE-2025-58181: Fix potential unbounded memory consumption (bsc#1253922)
* CVE-2025-47914: Fix panic due to an out of bounds read (bsc#1254051)
* Replace golang.org/x/crypto=golang.org/x/crypto@v0.45.0
* Replace golang.org/x/net=golang.org/x/net@v0.47.0
* Replace golang.org/x/sys=golang.org/x/sys@v0.38.0
- Packaging improvements:
* Drop Requires: golang-packaging. The recommended Go toolchain
dependency expression is BuildRequires: golang(API) >= 1.x or
optionally the metapackage BuildRequires: go
* Use BuildRequires: golang(API) >= 1.19 matching go.mod
* Build PIE with pattern that may become recommended procedure:
%%ifnarch ppc64 GOFLAGS="-buildmode=pie" %%endif go build
A go toolchain buildmode default config would be preferable
but none exist at this time.
* Drop mod=vendor, go1.14+ will detect vendor dir and auto-enable
* Remove go build -o output binary location and name. Default
binary has the same name as package of func main() and is
placed in the top level of the build directory.
* Add basic %check to execute binary --help
- Packaging improvements:
* Service go_modules replace dependencies with CVEs
* Replace github.com/cloudflare/circl=github.com/cloudflare/circl@v1.6.1
Fix GO-2025-3754 GHSA-2x5j-vhc8-9cwm
* Replace golang.org/x/net=golang.org/x/net@v0.36.0
Fixes GO-2025-3503 CVE-2025-22870
* Replace golang.org/x/crypto=golang.org/x/crypto@v0.35.0
Fixes GO-2023-2402 CVE-2023-48795 GHSA-45x7-px36-x8w8
Fixes GO-2025-3487 CVE-2025-22869
* Replace github.com/go-git/go-git/v5=github.com/go-git/go-git/v5@v5.13.0
Fixes GO-2025-3367 CVE-2025-21614 GHSA-r9px-m959-cxf4
Fixes GO-2025-3368 CVE-2025-21613 GHSA-v725-9546-7q7m
* Service tar_scm set mode manual from disabled
* Service tar_scm create archive from git so we can exclude
vendor directory upstream committed to git. Committed vendor
directory contents have build issues even after go mod tidy.
* Service tar_scm exclude dir vendor
* Service set_version set mode manual from disabled
* Service set_version remove param basename not needed
Patchnames: openSUSE-Leap-16.0-packagehub-59
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
31 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cheat",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cheat fixes the following issues:\n\n- Security:\n * CVE-2025-47913: Fix client process termination (bsc#1253593)\n * CVE-2025-58181: Fix potential unbounded memory consumption (bsc#1253922)\n * CVE-2025-47914: Fix panic due to an out of bounds read (bsc#1254051)\n * Replace golang.org/x/crypto=golang.org/x/crypto@v0.45.0\n * Replace golang.org/x/net=golang.org/x/net@v0.47.0\n * Replace golang.org/x/sys=golang.org/x/sys@v0.38.0\n\n- Packaging improvements:\n * Drop Requires: golang-packaging. The recommended Go toolchain\n dependency expression is BuildRequires: golang(API) \u003e= 1.x or\n optionally the metapackage BuildRequires: go\n * Use BuildRequires: golang(API) \u003e= 1.19 matching go.mod\n * Build PIE with pattern that may become recommended procedure:\n %%ifnarch ppc64 GOFLAGS=\"-buildmode=pie\" %%endif go build\n A go toolchain buildmode default config would be preferable\n but none exist at this time.\n * Drop mod=vendor, go1.14+ will detect vendor dir and auto-enable\n * Remove go build -o output binary location and name. Default\n binary has the same name as package of func main() and is\n placed in the top level of the build directory.\n * Add basic %check to execute binary --help\n\n- Packaging improvements:\n * Service go_modules replace dependencies with CVEs\n * Replace github.com/cloudflare/circl=github.com/cloudflare/circl@v1.6.1\n Fix GO-2025-3754 GHSA-2x5j-vhc8-9cwm\n * Replace golang.org/x/net=golang.org/x/net@v0.36.0\n Fixes GO-2025-3503 CVE-2025-22870\n * Replace golang.org/x/crypto=golang.org/x/crypto@v0.35.0\n Fixes GO-2023-2402 CVE-2023-48795 GHSA-45x7-px36-x8w8\n Fixes GO-2025-3487 CVE-2025-22869\n * Replace github.com/go-git/go-git/v5=github.com/go-git/go-git/v5@v5.13.0\n Fixes GO-2025-3367 CVE-2025-21614 GHSA-r9px-m959-cxf4\n Fixes GO-2025-3368 CVE-2025-21613 GHSA-v725-9546-7q7m\n * Service tar_scm set mode manual from disabled\n * Service tar_scm create archive from git so we can exclude\n vendor directory upstream committed to git. Committed vendor\n directory contents have build issues even after go mod tidy.\n * Service tar_scm exclude dir vendor\n * Service set_version set mode manual from disabled\n * Service set_version remove param basename not needed\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-packagehub-59",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_20177-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1247629",
"url": "https://bugzilla.suse.com/1247629"
},
{
"category": "self",
"summary": "SUSE Bug 1253593",
"url": "https://bugzilla.suse.com/1253593"
},
{
"category": "self",
"summary": "SUSE Bug 1253922",
"url": "https://bugzilla.suse.com/1253922"
},
{
"category": "self",
"summary": "SUSE Bug 1254051",
"url": "https://bugzilla.suse.com/1254051"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-48795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-48795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
}
],
"title": "Security update for cheat",
"tracking": {
"current_release_date": "2025-12-18T00:17:52Z",
"generator": {
"date": "2025-12-18T00:17:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:20177-1",
"initial_release_date": "2025-12-18T00:17:52Z",
"revision_history": [
{
"date": "2025-12-18T00:17:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-bp160.2.1.aarch64",
"product": {
"name": "cheat-4.4.2-bp160.2.1.aarch64",
"product_id": "cheat-4.4.2-bp160.2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-bp160.2.1.ppc64le",
"product": {
"name": "cheat-4.4.2-bp160.2.1.ppc64le",
"product_id": "cheat-4.4.2-bp160.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-bp160.2.1.s390x",
"product": {
"name": "cheat-4.4.2-bp160.2.1.s390x",
"product_id": "cheat-4.4.2-bp160.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cheat-4.4.2-bp160.2.1.x86_64",
"product": {
"name": "cheat-4.4.2-bp160.2.1.x86_64",
"product_id": "cheat-4.4.2-bp160.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-bp160.2.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64"
},
"product_reference": "cheat-4.4.2-bp160.2.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-bp160.2.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le"
},
"product_reference": "cheat-4.4.2-bp160.2.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-bp160.2.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x"
},
"product_reference": "cheat-4.4.2-bp160.2.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cheat-4.4.2-bp160.2.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
},
"product_reference": "cheat-4.4.2-bp160.2.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-48795"
}
],
"notes": [
{
"category": "general",
"text": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-48795",
"url": "https://www.suse.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "SUSE Bug 1217950 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1217950"
},
{
"category": "external",
"summary": "SUSE Bug 1218708 for CVE-2023-48795",
"url": "https://bugzilla.suse.com/1218708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "important"
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2025-21613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21613"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only happens when the file transport protocol is being used, as that is the only protocol that shells out to git binaries. This vulnerability is fixed in 5.13.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21613",
"url": "https://www.suse.com/security/cve/CVE-2025-21613"
},
{
"category": "external",
"summary": "SUSE Bug 1235572 for CVE-2025-21613",
"url": "https://bugzilla.suse.com/1235572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "important"
}
],
"title": "CVE-2025-21613"
},
{
"cve": "CVE-2025-21614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21614",
"url": "https://www.suse.com/security/cve/CVE-2025-21614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "important"
}
],
"title": "CVE-2025-21614"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.aarch64",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.ppc64le",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.s390x",
"openSUSE Leap 16.0:cheat-4.4.2-bp160.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-18T00:17:52Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
}
]
}
OPENSUSE-SU-2026:10230-1
Vulnerability from csaf_opensuse - Published: 2026-02-19 00:00 - Updated: 2026-02-19 00:00Summary
vexctl-0.4.1+git78.f951e3a-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: vexctl-0.4.1+git78.f951e3a-1.1 on GA media
Description of the patch: These are all security issues fixed in the vexctl-0.4.1+git78.f951e3a-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10230
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
33 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "vexctl-0.4.1+git78.f951e3a-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the vexctl-0.4.1+git78.f951e3a-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10230",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10230-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-30204 page",
"url": "https://www.suse.com/security/cve/CVE-2025-30204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22772 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24137 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24137/"
}
],
"title": "vexctl-0.4.1+git78.f951e3a-1.1 on GA media",
"tracking": {
"current_release_date": "2026-02-19T00:00:00Z",
"generator": {
"date": "2026-02-19T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10230-1",
"initial_release_date": "2026-02-19T00:00:00Z",
"revision_history": [
{
"date": "2026-02-19T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"product": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"product_id": "vexctl-0.4.1+git78.f951e3a-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"product": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"product_id": "vexctl-0.4.1+git78.f951e3a-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"product": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"product_id": "vexctl-0.4.1+git78.f951e3a-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "vexctl-0.4.1+git78.f951e3a-1.1.x86_64",
"product": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.x86_64",
"product_id": "vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64"
},
"product_reference": "vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le"
},
"product_reference": "vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x"
},
"product_reference": "vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vexctl-0.4.1+git78.f951e3a-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
},
"product_reference": "vexctl-0.4.1+git78.f951e3a-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27144"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. In versions on the 4.x branch prior to version 4.0.5, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code used strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service. Version 4.0.5 fixes this issue. As a workaround, applications could pre-validate that payloads passed to Go JOSE do not contain an excessive number of `.` characters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27144",
"url": "https://www.suse.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1237608 for CVE-2025-27144",
"url": "https://bugzilla.suse.com/1237608"
},
{
"category": "external",
"summary": "SUSE Bug 1237609 for CVE-2025-27144",
"url": "https://bugzilla.suse.com/1237609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-27144"
},
{
"cve": "CVE-2025-30204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-30204"
}
],
"notes": [
{
"category": "general",
"text": "golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits (via a call to strings.Split) its argument (which is untrusted data) on periods. As a result, in the face of a malicious request whose Authorization header consists of Bearer followed by many period characters, a call to that function incurs allocations to the tune of O(n) bytes (where n stands for the length of the function\u0027s argument), with a constant factor of about 16. This issue is fixed in 5.2.2 and 4.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-30204",
"url": "https://www.suse.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "SUSE Bug 1240441 for CVE-2025-30204",
"url": "https://bugzilla.suse.com/1240441"
},
{
"category": "external",
"summary": "SUSE Bug 1240442 for CVE-2025-30204",
"url": "https://bugzilla.suse.com/1240442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-30204"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-22772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22772"
}
],
"notes": [
{
"category": "general",
"text": "Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect (OIDC) identity. Prior to 1.8.5, Fulcio\u0027s metaRegex() function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services. Since the SSRF only can trigger GET requests, the request cannot mutate state. The response from the GET request is not returned to the caller so data exfiltration is not possible. A malicious actor could attempt to probe an internal network through Blind SSRF. This vulnerability is fixed in 1.8.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22772",
"url": "https://www.suse.com/security/cve/CVE-2026-22772"
},
{
"category": "external",
"summary": "SUSE Bug 1256532 for CVE-2026-22772",
"url": "https://bugzilla.suse.com/1256532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-22772"
},
{
"cve": "CVE-2026-24137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24137"
}
],
"notes": [
{
"category": "general",
"text": "sigstore framework is a common go library shared across sigstore services and clients. In versions 1.10.3 and below, the legacy TUF client (pkg/tuf/client.go) supports caching target files to disk. It constructs a filesystem path by joining a cache base directory with a target name sourced from signed target metadata; however, it does not validate that the resulting path stays within the cache base directory. A malicious TUF repository can trigger arbitrary file overwriting, limited to the permissions that the calling process has. Note that this should only affect clients that are directly using the TUF client in sigstore/sigstore or are using an older version of Cosign. Public Sigstore deployment users are unaffected, as TUF metadata is validated by a quorum of trusted collaborators. This issue has been fixed in version 1.10.4. As a workaround, users can disable disk caching for the legacy client by setting SIGSTORE_NO_CACHE=true in the environment, migrate to https://github.com/sigstore/sigstore-go/tree/main/pkg/tuf, or upgrade to the latest sigstore/sigstore release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24137",
"url": "https://www.suse.com/security/cve/CVE-2026-24137"
},
{
"category": "external",
"summary": "SUSE Bug 1257137 for CVE-2026-24137",
"url": "https://bugzilla.suse.com/1257137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.aarch64",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.ppc64le",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.s390x",
"openSUSE Tumbleweed:vexctl-0.4.1+git78.f951e3a-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-19T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-24137"
}
]
}
OPENSUSE-SU-2026:20620-1
Vulnerability from csaf_opensuse - Published: 2026-04-23 16:22 - Updated: 2026-04-23 16:22Summary
Security update for rclone
Severity
Critical
Notes
Title of the patch: Security update for rclone
Description of the patch: This update for rclone fixes the following issues:
Changes in rclone:
- Update to version 1.73.5:
* Version v1.73.5
* operations: add AuthRequired to operations/fsinfo to prevent backend creation CVE-2026-41179
* rc: snapshot NoAuth at startup to prevent runtime auth bypass CVE-2026-41176
* rc: add AuthRequired to options/set to prevent auth bypass CVE-2026-41176
* s3: fix empty delimiter parameter rejected by Archiware P5 server
* azureblob/auth: add Microsoft Partner Network User-Agent prefix
* drime: fix User.EntryPermissions JSON unmarshalling
* filter: fix debug logs that fire before logger is configured - fixes #9291
* s3: fix TencentCOS CDN endpoint failing on bucket check
* iclouddrive: fix 'directory not found' error when the directory contains accent marks
* Start v1.73.5-DEV development
- Update to version 1.73.4:
* Version v1.73.4
* Update to go 1.25.9 to fix multiple CVEs
* build: fix Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder
* docs: fix markdown issues in mount docs
* docs: fix header level for metadata option
* fix(docs): Fix link to not be language specific
* filen: update SDK version
* build(deps): bump golang.org/x/image from 0.36.0 to 0.38.0
* docs: note macOS 10.15 (Catalina) support with version v1.70.3
* Start v1.73.4-DEV development
- Update to version 1.73.3: (CVE-2026-33186 GHSA-6g7g-w4f8-9c9x)
* Version v1.73.3
* build(deps): bump github.com/buger/jsonparser from 1.1.1 to 1.1.2
* docs/jottacloud: fix broken link
* docs: clarify Filen password change requires updating both password and API key in rclone config
* docs: note that Filen API key changes on password change
* build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3
* s3: add multi tenant support for Cubbit
* lib/rest: fix URLPathEscapeAll breaking WebDAV servers (eg nzbdav) with strict path matching
* list: fix nil pointer panic in Sorter when temp file creation fails
* docs: update RELEASE procedure to avoid mistakes
* docs: added text to the label showing version-introduced info
* Start v1.73.3-DEV development
* docs: update sponsors
- Update to version 1.73.2:
* Version v1.73.2
* Update to go 1.25.8 to fix multiple CVEs
* build: update to golang.org/x/net v0.51.0 to fix CVE-2026-27141 #9220
* docs: fix new drive flag typo in changelog
* webdav: add missing headers for CORS
* docs: Document unsupported S3 object keys with double slashes
* docs: note that --use-server-modtime only works on some backends
* internxt: fix Entry doesn't belong in directory errors on windows
* drime: fix chunk-uploaded files ignoring workspace ID
* docs: Fix headers hierarchy for mount.md
* webdav: escape reserved characters in URL path segments
* bisync: add group Sync to the bisync command
* archive: extract: strip "./" prefix from tar entry paths
* docs: add instructions on how to update Go version
* buid: update github.com/cloudflare/circl to v1.6.3 to fix CVE-2026-1229
* Start v1.73.2-DEV development
- Update to version 1.73.1:
* Version v1.73.1
* build: fix build using go 1.26.0 instead of go 1.25.7
* fs/march: fix runtime: program exceeds 10000-thread limit
* accounting: fix missing server side stats from core/stats rc
* pacer: re-read the sleep time as it may be stale
* pacer: fix deadlock between pacer token and --max-connections
* build: fix CVE-2025-68121 by updating go to 1.25.7 or later - fixes #9167
* drime: fix files and directories being created in the default workspace
* docs: update sponsors
* copyurl: Extend copyurl docs with an example of CSV FILENAMEs starting with a path.
* internxt: implement re-login under refresh logic, improve retry logic - fixes #9174
* docs: add ExchangeRate-API as a sponsor
* build: bump github.com/go-chi/chi/v5 from 5.2.3 to 5.2.5 to fix GO-2026-4316
* Set list_version to 2 for FileLu S3 configuration
* filelu: add multipart upload support with configurable cutoff
* filelu: add multipart init response type
* filelu: add comment for response body wrapping
* filelu: avoid buffering entire file in memory
* docs: update sponsor logos
* filen: fix potential panic in case of error during upload
* filen: fix 32 bit targets not being able to list directories Fixes #9142
* Start v1.73.1-DEV development
- Update to version 1.73.0:
* Version v1.73.0
* drive: fix crash when trying to creating shortcut to a Google doc
* azureblob,azurefiles: factor the common auth into a library
* test: allow backends to return fs.ErrorCantListRoot to skip Root tests
* build: add privatebeta Makefile target
* docs: add Internxt as a sponsor
* internxt: remove use of CVE laden github.com/disintegration/imaging
* docs: fix Internxt docs after merge
* docs: update making a new backend docs
* docs: build overview page from the backend data
* docs: add tiering to the documentation - fixes #8873
* docs: add data about each backend in YAML format
* docs: add bin/manage_backends.py for managing the backend data files
* internxt: use rclone's http.Client to enable more features
* internxt: fix lint problems
* Add StarHack to contributors
* Add lullius to contributors
* Add jzunigax2 to contributors
* internxt: add Internxt backend - fixes #7610
* drive: add --drive-metadata-force-expansive-access flag - Fixes #8980
* test_all: allow drime more time to complete
* onedrive: fix permissions on onedrive Personal
* onedrive: fix require sign in for Onedrive Personal
* onedrive: Onedrive Personal no longer supports description
* onedrive: fix setting modification time on directories for onedrive Personal
* onedrive: fix cancelling multipart upload
* docs: fix WinFsp link in mount documentation
* cmount: make work under OpenBSD - fixes #1727
* vfs: make mount tests run on OpenBSD
* docs: improve alignment of icons
* protondrive: update to use forks of upstream modules
* Add hyusap to contributors
* Add Nick Owens to contributors
* Add Mikel Olasagasti Uranga to contributors
* docs: fix googlephotos custom client_id instructions
* cmount: fix OpenBSD mount support.
* fs: fix bwlimit: correctly report minutes
* fs: fix bwlimit: use %d instead of %q for ints
* mega: reverts TLS workaround
* docs: fix formatting
* docs: add faq entry about re-enabling old TLS ciphers
* Add Marc-Philip to contributors
* Add yy to contributors
* filen: swap to blake3 hashes
* docs: fix echo command syntax for password input
* docs: fix typos in comments and messages
* docs: fix use of removed rem macro
* uptobox: remove backend as service is no longer available
* rc: add operations/hashsumfile to sum a single file only
* docs: update sponsor link
* filen: add Filen backend - Fixes #6728
* sftp: fix proxy initialisation
* fstest: skip Copy mutation test with --sftp-copy-is-hardlink
* fstest: Make Copy mutation test work properly
* Add Qingwei Li to contributors
* Add Nicolas Dessart to contributors
* log: fix systemd adding extra newline - fixes #9086
* oracleobjectstorage, sftp: eliminate unnecessary heap allocation
* sftp,ftp: add http proxy authentication support
* Add Drime backend
* lib/rest: add opts.MultipartContentType to explicitly set Content-Type of attachements
* dircache: allow empty string as root parent id
* docs: update sponsors
* s3: add provider Bizfly Cloud Simple Storage
* docs: update sponsor logos
* Add sys6101 to contributors
* Add darkdragon-001 to contributors
* Add vupn0712 to contributors
* docs: add cloudinary to readme
* docs: fix headers hierarchy in mount docs
* s3: fix Copy ignoring storage class
* serve s3: make errors in --s3-auth-key fatal - fixes #9044
* Add masrlinu to contributors
* pcloud: add support for real-time updates in mount
* memory: add --memory-discard flag for speed testing - fixes #9037
* Add vyv03354 to contributors
* shade: Fix VFS test issues
* docs: mention use of ListR feature in ls docs
* build: bump actions/download-artifact from 6 to 7
* build: bump actions/upload-artifact from 5 to 6
* build: bump actions/cache from 4 to 5
* docs: reflects the fact that pCloud supports ListR
* S3: Linode: updated endpoints to use ISO 3166-1 alpha-2 standard
* sync: fix error propagation in tests (#9025)
* Changelog updates from Version v1.72.1
* s3: add more regions for Selectel
* Add jhasse-shade to contributors
* Add Shade backend
* log: fix backtrace not going to the --log-file #9014
* build: fix lint warning after linter upgrade
* Add Jonas Tingeborn to contributors
* Add Tingsong Xu to contributors
* configfile: add piped config support - fixes #9012
* fs/log: fix PID not included in JSON log output
* build: adjust lint rules to exclude new errors from linter update
* proxy: fix error handling in tests spotted by the linter
* Add Johannes Rothe to contributors
* Add Leo to contributors
* Add Vladislav Tropnikov to contributors
* Add Cliff Frey to contributors
* Add vicerace to contributors
* b2: Fix listing root buckets with unrestricted API key
* googlecloudstorage: improve endpoint parameter docs
* serve webdav: implement download-directory-as-zip
* s3: The ability to specify an IAM role for cross-account interaction
* azureblob: add metadata and tags support across upload and copy paths
* refactor: use strings.Cut to simplify code
* docs: note where a provider has an S3 compatible alternative
* Add Shade as sponsor
* Add Duncan Smart to contributors
* Add Diana to contributors
* docs: Clarify OAuth scopes for readonly Google Drive access
* b2: support authentication with new bucket restricted application keys
* docs: update sponsor logos
* docs: fix lint error in changelog
* Start v1.73.0-DEV development
- Update to version 1.72.1:
* Version v1.72.1
* s3: add more regions for Selectel
* log: fix backtrace not going to the --log-file #9014
* build: fix lint warning after linter upgrade
* configfile: add piped config support - fixes #9012
* fs/log: fix PID not included in JSON log output
* build: adjust lint rules to exclude new errors from linter update
* proxy: fix error handling in tests spotted by the linter
* googlecloudstorage: improve endpoint parameter docs
* docs: note where a provider has an S3 compatible alternative
* Add Shade as sponsor
* docs: Clarify OAuth scopes for readonly Google Drive access
* docs: update sponsor logos
* docs: fix lint error in changelog
* Start v1.72.1-DEV development
- Update to version 1.72.0:
* Version v1.72.0
* rc: fix formatting in job/batch
* test speed: fix formatting of help
* docs: update sponsor logos
* build: bump actions/checkout from 5 to 6
* s3: add multi-part-upload support for If-Match and If-None-Match
* rc: config/unlock: rename parameter to `configPassword` accept old as well
* rc: correct names of parameters in job/list output
* Add Nikolay Kiryanov to contributors
* rc: add `executeId` to job statuses - fixes #8972
* build: bump golang.org/x/crypto from 0.43.0 to 0.45.0 to fix CVE-2025-58181
* s3: fix single file copying behavior with low permission - Fixes #8975
* docs: onedrive: note how to backup up any user's data
* Add Dominik Sander to contributors
* Add jijamik to contributors
* box: allow to configure with config file contents
* http: add basic metadata and provide it via serve
* ftp: fix transfers from servers that return 250 ok messages
* b2: allow individual old versions to be deleted with --b2-versions - fixes #1626
* build: fix tls: failed to verify certificate: x509: negative serial number
* Add Sean Turner to contributors
* s3: add support for --upload-header If-Match and If-None-Match
* fix: comment typos
* dropbox: fix error moving just created objects - fixes #8881
* s3: add --s3-use-data-integrity-protections to fix BadDigest error in Alibaba, Tencent
* rc: make sure fatal errors don't crash rclone - fixes #8955
* pacer: factor call stack searching into its own package
* rc: add osVersion, osKernel and osArch to core/version
* build: update all dependencies
* build(deps): bump golangci/golangci-lint-action from 8 to 9
* webdav: fix out of memory with sharepoint-ntlm when uploading large file
* testserver: fix owncloud test server startup
* Add aliaj1 to contributors
* ulozto: Fix downloads returning HTML error page
* docs: adjust spectra logic example endpoint name
* docs: update version introduced to v1.70 in doi docs
* testserver: fix HDFS server after run.bash adjustments
* testserver: remind developers about allocating a port
* testserver: make run.bash variables less likely to collide with scripts
* testserver: fix seafile servers messing up _connect string
* testserver: make sure TestWebdavInfiniteScale uses an assigned port
* testserver: make sure we don't overwrite the NAME variable set
* Add n4n5 to contributors
* Add Alex to contributors
* Add Copilot to contributors
* docs: update contributing docs regarding backend documentation
* rc: add jobs stats
* docs: fix alignment of some of the icons in the storage system dropdown
* docs: run markdownlint on _index.md
* docs: fix markdownlint issues and other styling improvements in backend command docs
* docs: fix markdownlint issue md046/code-block-style in backend command docs
* docs: fix missing punctuation in backend commands short description
* docs: fix markdownlint issues in backend command generated output
* build: improve backend docs autogenerated marker line
* backend/compress: add zstd compression
* sftp: fix zombie SSH processes with --sftp-ssh - Fixes #8929
* testserver: fix tests failing due to stopped servers
* docs: add new integration tester site link
* docs: update the method for running integration tests
* bisync: fix failing tests
* Add SublimePeace to contributors
* b2: fix "expected a FileSseMode but found: ''"
* docs: s3: clarify multipart uploads memory usage
* test_all: fix detection of running servers
* accounting: add AccountReadN for use in cluster
* fs: add NonDefaultRC for discovering options in use
* fs: move tests into correct files
* rc: add NewJobFromBytes for reading jobs from non HTTP transactions
* rc: add job/batch for sending batches of rc commands to run concurrently
* Add Ted Robertson to contributors
* Add Joseph Brownlee to contributors
* Add fries1234 to contributors
* Add Fawzib Rojas to contributors
* Add Riaz Arbi to contributors
* Add Lukas Krejci to contributors
* Add Adam Dinwoodie to contributors
* Add dulanting to contributors
* docs: add AppArmor restrictions to rclone mount
* check: improved reporting of differences in sizes and contents
* mega: implement 2FA login
* docs: change to light code block style to better match overall theme
* docs: fix various markdownlint issues
* build: restrict the markdown languages to use for code blocks
* docs: fix various markdownlint issues
* docs: fix markdownlint issue md013/line-length
* docs: change syntax hightlighting for command examples from sh to console
* docs: Clarify remote naming convention
* b2: Add Server-Side encryption support
* Added rclone archive command to create and read archive files
* accounting: add io.Seeker/io.ReaderAt support to accounting.Account
* operations: add ReadAt method to ReOpen
* fstest: add ResetRun to allow the remote to be reset in tests
* gcs: fix --gcs-storage-class to work with server side copy for objects
* ulozto: implement the about functionality
* local: add --skip-specials to ignore special files
* swift: Report disk usage in segment containers
* refactor: use strings.Builder to improve performance
* Archive backend to read archives on cloud storage.
* vfs: remove unecessary import in tests to fix import cycles
* Add Lakshmi-Surekha to contributors
* Add Andrew Gunnerson to contributors
* Add divinity76 to contributors
* build: enable support for aix/ppc64
* rc: fix name of "queue" JSON key in docs for vfs/cache
* cmount: windows: improve error message on missing winfsp
* docs: add the Provider to the options examples in the backend docs
* Add Aneesh Agrawal to contributors
* Add viocha to contributors
* Add reddaisyy to contributors
* fs: remove unnecessary Seek call on log file
* s3: make it easier to add new S3 providers
* build(deps): bump actions/upload-artifact from 4 to 5
* build(deps): bump actions/download-artifact from 5 to 6
* ftp: fix SOCK proxy support - fixes #8892 (#8918)
* webdav: Add Access-Control-Max-Age header for CORS preflight caching - fixes #5078
* webdav: use SpaceSepList to parse bearer token command
* refactor: use strings.Builder to improve performance
* docs: re-arrange sponsors page
* docs: add Spectra Logic as a sponsor
* Add Oleksandr Redko to contributors
* build: enable all govet checks (except fieldalignment and shadow) and fix issues.
* march: fix --no-traverse being very slow - fixes #8860
* Add vastonus to contributors
* s3: add new FileLu S5 endpoints
* build: remove obsolete build tag
* azurefiles: add ListP interface - #4788
* dropbox: add ListP interface - #4788
* webdav: add ListP interface - #4788
* pcloud: add ListP interface - #4788
* box: add ListP interface - #4788
* onedrive: add ListP interface - #4788
* drive: add ListP interface - #4788
* Add hunshcn to contributors
* webdav: optimize bearer token fetching with singleflight
* Changelog updates from Version v1.71.2
* lib/http: cleanup indentation and other whitespace in http serve template
* docs: improve formatting of http serve template parameters
* build: stop markdown linter leaving behind docker containers
* Add Marco Ferretti to contributors
* s3: add cubbit as provider
* s3: add servercore as a provider
* docs: update sponsors
* docs: update sponsor images
* docs: update privacy policy with a section on user data
* Add Dulani Woods to contributors
* Add spiffytech to contributors
* gcs: add region us-east5 - fixes #8863
* jottacloud: refactor service list from map to slice to get predefined order
* jottacloud: added support for traditional oauth authentication also for the main service
* oauthutil: improved debug logs from token refresh
* backend: add S3 provider for Hetzner object storage #8183
* jottacloud: improved token refresh handling
* s3: provider reordering
* index: add missing providers
* docs: add missing `
* s3: add rabata as a provider
* mega: fix 402 payment required errors - fixes #8758
* Add Andrew Ruthven to contributors
* Add Microscotch to contributors
* Add iTrooz to contributors
* build: Bump SwiftAIO container to a newer one
* build: Retry stopping the test server
* build: Increase attempts to connect to test server
* swift: If storage_policy isn't set, use the root containers policy
* proton: automated 2FA login with OTP secret key
* serve s3: fix log output to remove the EXTRA messages
* docs/jottacloud: update description of invalid_grant error according to changes
* jottacloud: add support for MediaMarkt Cloud as a whitelabel service
* s3: add FileLu S5 provider
* docs: fix variants of --user-from-header
* vfs: fix chunker integration test
* test_all: give TestZoho: extra time as it has been timing out
* test_all: give TestCompressDrive: extra time as it has been timing out
* rclone config string: reduce quoting with Human rendering for strings #8859
* Add juejinyuxitu to contributors
* docs/jottacloud: update documentation with new whitelabel services and changed configuration flow
* jottacloud: abort attempts to run unsupported rclone authorize command
* jottacloud: minor adjustment of texts in config ui
* jottacloud: add support for Let's Go Cloud (from MediaMarkt) as a whitelabel service
* jottacloud: fix authentication for whitelabel services from Elkjp subsidiaries
* jottacloud: refactor config handling of whitelabel services to use openid provider configuration
* jottacloud: remove nil error object from error message
* jottacloud: fix legacy authentication
* docs: add remote setup page to main docs dropdown
* docs: update remote setup page
* docs: add link from authorize command docs to remote setup docs
* docs: lowercase internet and web browser instead of Internet browser
* docs: use the term backend name instead of fs name for authorize command
* add `rclone config string` for making connection strings #8859
* config: add more human readable configmap.Simple output
* serve http: download folders as zip
* s3: reorder providers to be in alphabetical order
* refactor: use strings.FieldsFuncSeq to reduce memory allocations
* accounting: add SetMaxCompletedTransfers method to fix bisync race #8815
* accounting: add RemoveDoneTransfers method to fix bisync race #8815
* bisync: fix race when CaptureOutput is used concurrently #8815
* build: update all dependencies
* Makefile: remove deprecated go mod usage
* azurefiles: Fix server side copy not waiting for completion - fixes #8848
* Changelog updates from Version v1.71.1
* test_all: fix branch name in test report
* pacer: fix deadlock with --max-connections
* Revert "azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors"
* Add Youfu Zhang to contributors
* Add Matt LaPaglia to contributors
* smb: optimize smb mount performance by avoiding stat checks during initialization
* pikpak: fix unnecessary retries by using URL expire parameter - fixes #8601
* serve http: fix: logging url on start
* docs: fix typo
* b2: fix 1TB+ uploads
* march: fix deadlock when using --fast-list on syncs - fixes #8811
* build: slices.Contains, added in go1.21
* build: use strings.CutPrefix introduced in go1.20
* build: use sequence Split introduced in go1.24
* build: use "for i := range n", added in go1.22
* build: modernize benchmark usage
* build: in tests use t.Context, added in go1.24
* build: replace interface{} by the 'any' type added in go1.18
* build: use the built-in min or max functions added in go1.21
* Add russcoss to contributors
* build: remove x := x made unnecessary by the new semantics of loops in go1.22
* lib/pool: fix unreliable TestPoolMaxBufferMemory test
* Update S-Pegg1 email
* Add Jean-Christophe Cura to contributors
* pool: fix flaky unreliability test
* copyurl: reworked code, added concurrency and tests
* copyurl: Added --url to read urls from csv file - #8127
* docs: HDFS: erasure coding limitation #8808
* fstest: fix slice bounds out of range error when using -remotes local
* local: fix time zones on tests
* s3: added SpectraLogic as a provider
* local: fix rmdir "Access is denied" on windows - fixes #8363
* bisync: fix error handling for renamed conflicts
* docs: pcloud: update root_folder_id instructions
* operations: fix partial name collisions for non --inplace copies
* drive: docs: update making your own client ID instructions
* swift: add ListP interface - #4788
* memory: add ListP interface - #4788
* oraceobjectstorage: add ListP interface - #4788
* B2: add ListP interface - #4788
* azureblob: add ListP interface - #4788
* googlecloudstorage: add ListP interface - Fixes #8763
* build: bump actions/github-script from 7 to 8
* build: bump actions/setup-go from 5 to 6
* bisync: fix chunker integration tests
* bisync: fix koofr integration tests
* internetarchive: fix server side copy files with spaces
* lib/rest: add URLPathEscapeAll to URL escape as many chars as possible
* Add alternate email for dougal to contributors
* test speed: add command to test a specified remotes speed
* docs: add link to MEGA S4 from MEGA page
* Add Robin Rolf to contributors
* Add anon-pradip to contributors
* s3: Add Intercolo provider
* gendocs: refactor and add logging of skipped command docs
* gendocs: ignore missing rclone_mount.md, rclone_nfsmount.md, rclone_serve_nfs.md on windows
* bin: add bisync.md generator
* fstest: refactor to decouple package from implementation
* gendocs: ignore missing rclone_mount.md on macOS
* bisync: ignore expected "nothing to transfer" differences on tests
* bisync: fix TestBisyncConcurrent ignoring -case
* bisync: make number of parallel tests configurable
* docs: clarify subcommand description in rclone usage
* docs: fix description of regex syntax of name transform
* docs: add some more details about supported regex syntax
* makefile: fix lib/transform docs not getting updated
* lib/pool: fix flaky test which was causing timeouts
* Add dougal to contributors
* vfs: fix SIGHUP killing serve instead of flushing directory caches
* bisync: use unique stats groups on tests
* fstest: stop errors in test cleanup changing the global stats
* Add Motte to contributors
* Add Claudius Ellsel to contributors
* build: add local markdown linting to make check
* lsf: add support for unix and unixnano time formats
* docs: remove broken links from rc to commands
* hashsum: changed output format when listing algorithms
* docs: add example of how to add date as suffix
* box: fix about after change in API return - fixes #8776
* Add skbeh to contributors
* Add Tilman Vogel to contributors
* docs: fix incorrectly escaped windows path separators
* build: restore error handling in gendocs
* combine: propagate SlowHash feature
* docs/oracleobjectstorage: add introduction before external links and remove broken link
* docs: fix markdown lint issues in backend docs
* docs: fix markdown lint issues in command docs
* docs: update markdown code block json indent size 2
* mount: do not log successful unmount as an error - fixes #8766
* Start v1.72.0-DEV development
- Update to version 1.71.2:
* Version v1.71.2
* docs: update sponsors
* docs: update sponsor images
* docs: update privacy policy with a section on user data
* gcs: add region us-east5 - fixes #8863
* index: add missing providers
* docs: add missing `
* mega: fix 402 payment required errors - fixes #8758
* docs: fix variants of --user-from-header
* docs: add remote setup page to main docs dropdown
* docs: update remote setup page
* docs: add link from authorize command docs to remote setup docs
* docs: lowercase internet and web browser instead of Internet browser
* docs: use the term backend name instead of fs name for authorize command
* bisync: fix race when CaptureOutput is used concurrently #8815
* azurefiles: Fix server side copy not waiting for completion - fixes #8848
* pikpak: fix unnecessary retries by using URL expire parameter - fixes #8601
* serve http: fix: logging url on start
* docs: fix typo
* b2: fix 1TB+ uploads
* Start v1.71.2-DEV development
- Update to version 1.71.1:
* Version v1.71.1
* pacer: fix deadlock with --max-connections
* Revert "azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors"
* march: fix deadlock when using --fast-list on syncs - fixes #8811
* docs: HDFS: erasure coding limitation #8808
* local: fix rmdir "Access is denied" on windows - fixes #8363
* bisync: fix error handling for renamed conflicts
* docs: pcloud: update root_folder_id instructions
* operations: fix partial name collisions for non --inplace copies
* drive: docs: update making your own client ID instructions
* internetarchive: fix server side copy files with spaces
* lib/rest: add URLPathEscapeAll to URL escape as many chars as possible
* docs: add link to MEGA S4 from MEGA page
* docs: clarify subcommand description in rclone usage
* docs: fix description of regex syntax of name transform
* docs: add some more details about supported regex syntax
* makefile: fix lib/transform docs not getting updated
* vfs: fix SIGHUP killing serve instead of flushing directory caches
* docs: remove broken links from rc to commands
* docs: add example of how to add date as suffix
* box: fix about after change in API return - fixes #8776
* docs: fix incorrectly escaped windows path separators
* build: restore error handling in gendocs
* combine: propagate SlowHash feature
* docs/oracleobjectstorage: add introduction before external links and remove broken link
* docs: fix markdown lint issues in backend docs
* docs: fix markdown lint issues in command docs
* docs: update markdown code block json indent size 2
* mount: do not log successful unmount as an error - fixes #8766
* Start v1.71.1-DEV development
- Update to version 1.71.0:
* Version v1.71.0
* fs: tls: add --client-pass support for encrypted --client-key files
* ftp: make TLS config default to global TLS config - Fixes #6671
* fshttp: return *Transport rather than http.RoundTripper from NewTransport
* bisync: release from beta
* bisync: fix markdown formatting issues flagged by linter in docs
* bisync: fix --no-slow-hash settings on path2
* Add cui to contributors
* docs: add code of conduct
* lib/mmap: convert to using unsafe.Slice to avoid deprecated reflect.SliceHeader
* build: bump golangci/golangci-lint-action from 6 to 8
* build: update golangci-lint configuration
* build: ignore revive lint issue var-naming: avoid meaningless package names
* build: fix lint issue: should omit type error from declaration
* Revert "build: downgrade linter to use go1.24 until it is fixed for go1.25"
* build: migrate golangci-lint configuration to v2 format
* s3: add --s3-use-arn-region flag - fixes #8686
* Add Binbin Qian to contributors
* Add Lucas Bremgartner to contributors
* docs: add tips about outdated certificates
* FAQ: specify the availability of SSL_CERT_* env vars
* pikpak: add file name integrity check during upload
* bisync: skip TestBisyncConcurrent on non-local
* internetarchive: fix server side copy files with &
* Revert "s3: set useAlreadyExists to false for Alibaba OSS"
* Add huangnauh to contributors
* smb: improve multithreaded upload performance using multiple connections
* bisync: fix data races on tests
* bisync: remove unused parameters
* bisync: deglobalize to fix concurrent runs via rc - fixes #8675
* mount: fix identification of symlinks in directory listings
* s3: fix Content-Type: aws-chunked causing upload errors with --metadata
* config: fix problem reading pasted tokens over 4095 bytes
* config: fix test failure on local machine with a config file
* log: add log rotation to --log-file - fixes #2259
* accounting: Fix stats (speed=0 and eta=nil) when starting jobs via rc
* docs: update overview table for oracle object storage
* Add praveen-solanki-oracle to contributors
* oracleobjectstorage: add read only metadata support - Fixes #8705
* doc: sync doesn't symlinks in dest without --link - Fixes #8749
* s3: sort providers in docs
* s3: add docs for Exaba Object Storage
* azureblob: fix double accounting for multipart uploads - fixes #8718
* pool: fix deadlock with --max-buffer-memory
* azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors
* build: downgrade linter to use go1.24 until it is fixed for go1.25
* build: update all dependencies
* build: update to go1.25 and make go1.24 the minimum required version
* Add Timothy Jacobs to contributors
* bisync: fix time.Local data race on tests - fixes #8272
* googlecloudstorage: fix rateLimitExceeded error on bisync tests
* accounting: populate transfer snapshot with "what" value
* build(deps): bump actions/checkout from 4 to 5
* build(deps): bump actions/download-artifact from 4 to 5
* googlecloudstorage: enable bisync integration tests
* fstest: fix parsing of commas in -remotes
* azurefiles: fix hash getting erased when modtime is set
* bisync: disable --sftp-copy-is-hardlink on sftp tests
* local: fix --copy-links on Windows when listing Junction points
* operations: fix too many connections open when using --max-memory
* pool: fix deadlock with --max-memory and multipart transfers
* pool: unify memory between multipart and asyncreader to use one pool
* docs: update links to rcloneui
* docs: add MEGA S4 as a gold sponsor
* about: fix potential overflow of about in various backends
* box: fix about: cannot unmarshal number 1.0e+18 into Go struct field
* oauthutil: fix nil pointer crash when started with expired token
* rc: listremotes should send an empty array instead of nil
* config: add error if RCLONE_CONFIG_PASS was supplied but didn't decrypt config
* rc: add config/unlock to unlock the config file
* ftp: allow insecure TLS ciphers - fixes #8701
* s3: set useAlreadyExists to false for Alibaba OSS
* docs: update sponsors page
* fs: allow global variables to be overriden or set on backend creation
* fs: allow setting of --http_proxy from command line
* tests: cloudinary: remove test ignore after merging fix from #8707
* Add Antonin Goude to contributors
* Add Yu Xin to contributors
* Add houance to contributors
* Add Florent Vennetier to contributors
* Add n4n5 to contributors
* Add Albin Parou to contributors
* Add liubingrun to contributors
* sync: fix testLoggerVsLsf when backend only reads modtime
* sync: fix testLoggerVsLsf checking wrong fs
* docs: fix make opengraph tags absolute as not all sites understand relative
* docs: update contributing guide regarding markdown documentation
* build: add markdown linting to workflow
* build: add markdownlint configuration
* docs: minor format cleanup install.md
* docs: fix markdownlint issue md049/emphasis-style
* docs: fix markdownlint issue md036/no-emphasis-as-heading
* docs: fix markdownlint issue md033/no-inline-html
* docs: fix markdownlint issue md025/single-title
* docs: fix markdownlint issue md041/first-line-heading
* docs: fix markdownlint issue md001/heading-increment
* docs: fix markdownlint issue md003/heading-style
* docs: fix markdownlint issue md034/no-bare-urls
* docs: fix markdownlint issue md010/no-hard-tabs
* docs: fix markdownlint issue md013/line-length
* docs: fix markdownlint issue md038/no-space-in-code
* docs: fix markdownlint issue md040/fenced-code-language
* docs: fix markdownlint issue md046/code-block-style
* docs: fix markdownlint issue md037/no-space-in-emphasis
* docs: fix markdownlint issue md059/descriptive-link-text
* docs: fix markdownlint issues md007/ul-indent md004/ul-style
* docs: fix markdownlint issue md012/no-multiple-blanks
* docs: fix markdownlint issue md058/blanks-around-tables
* docs: fix markdownlint issue md022/blanks-around-headings
* docs: fix markdownlint issue md031/blanks-around-fences
* docs: fix markdownlint issue md032/blanks-around-lists
* docs: fix markdownlint issue md009/no-trailing-spaces
* docs: fix markdownlint issue md014/commands-show-output
* docs: fix markdownlint issues md007/ul-indent md004/ul-style (bin/update-authors.py)
* docs: fix markdownlint issues md007/ul-indent md004/ul-style (authors.md)
* docs: add opengraph tags for website social media previews
* mount: note that bucket based remotes can use directory markers
* pikpak: add docs for methods to clarify name collision handling and restrictions
* pikpak: enhance Copy method to handle name collisions and improve error management
* pikpak: enhance Move for better handling of error and name collision
* accounting: fix incorrect stats with --transfers=1 - fixes #8670
* rc: fix `operations/check` ignoring `oneWay` parameter
* s3: add OVHcloud Object Storage provider
* docs: rc: fix description of how to read local config
* build: limit check for edits of autogenerated files to only commits in a pull request
* build: extend check for edits of autogenerated files to all commits in a pull request
* smb: refresh Kerberos credentials when ccache file changes
* s3: fix multipart upload and server side copy when using bucket policy SSE-C
* backend/s3: Fix memory leak by cloning strings #8683
* purge: exit with a fatal error if filters are set on `rclone purge`
* docs: Add Backblaze as a Platinum sponsor
* Add Sam Pegg to contributors
* googlephotos: added warning for Google Photos compatability-fixes #8672
* test: remove flakey TestChunkerChunk50bYandex: test
* docs: Consolidate entries for Josh Soref in contributors
* docs: remove dead link to example of writing a plugin
* filescom: document that hashes need to be enabled - fixes #8674
* Add Sudipto Baral to contributors
* docs: fix incorrect json syntax in sample output
* docs: ignore author email piyushgarg80
* docs: fix header level for --dump option section
* docs: use stringArray as parameter type
* docs: use consistent markdown heading syntax
* imagekit: remove server side Copy method as it was downloading and uploading
* imagekit: don't low level retry uploads
* imagekit: return correct error when attempting to upload zero length files
* smb: add --smb-kerberos-ccache option to set kerberos ccache per smb backend
* test: fix smb kerberos integration tests
* Changelog updates from Version v1.70.3
* config: make parsing of duration options consistent
* docs: cleanup usage
* docs: break long lines
* docs: add option value type to header where missing
* docs: mention that identifiers in option values are case insensitive
* docs: rewrite dump option examples
* docs: use markdown inline code format for dump option headers that are real examples
* docs: change spelling from server side to server-side
* docs: cleanup header casing
* docs: rename OSX to macOS
* docs: fix list and code block issue
* docs: consistent markdown list format
* docs: split section with general description of options with that documenting actual main options
* docs: improve description of option types
* docs: use space instead of equal sign to separate option and value in headers
* docs: use comma to separate short and long option format in headers
* docs: remove use of uncommon parameter types
* docs: remove use of parameter type FILE
* docs: remove use of parameter type DIR
* docs: remove use of parameter type CONFIG_FILE
* docs: change use of parameter type N and NUMBER to int consistent with flags and cli help
* docs: change use of parameter type TIME to Duration consistent with flags and cli help
* docs: change use of parameter type BANDWIDTH_SPEC to BwTimetable consistent with flags and cli help
* docs: change use of parameter type SIZE to SizeSuffix consistent with flags and cli help
* docs: cleanup markdown header format
* docs: explain separated list parameters
* azureblob: fix server side copy error "requires exactly one scope"
* test: remove and ignore failing integration tests
* docs: explain the json log format in more detail
* check: fix difference report (was reporting error counts)
* serve sftp: add support for more hashes (crc32, sha256, blake3, xxh3, xxh128)
* serve sftp: extract function refactoring for handling hashsum commands
* sftp: add support for more hashes (crc32, sha256, blake3, xxh3, xxh128)
* local: configurable supported hashes
* hash: add support for BLAKE3, XXH3, XXH128
* vfs: make integration TestDirEntryModTimeInvalidation test more reliable
* smb: skip non integration tests when doing integration tests
* seafile: fix integration test errors by adding dot to encoding
* linkbox: fix upload error "user upload file not exist"
* build: remove integration tests which are too slow
* march: fix deadlock when using --no-traverse - fixes #8656
* pikpak: improve error handling for missing links and unrecoverable 500s
* pikpak: rewrite upload to bypass AWS S3 manager - fixes #8629
* test: fix TestSMBKerberos password expiring errors
* Add Vikas Bhansali to contributors
* Add Ross Smith II to contributors
* azureblob,azurefiles: add support for client assertion based authentication
* webdav: fix setting modtime to that of local object instead of remote
* build: set default shell to bash in build.yml
* docs: fix filescom/filelu link mixup
* Add Davide Bizzarri to contributors
* fix: b2 versionAt read metadata
* test: make TestWebdavInfiniteScale startup more reliable
* test_all: add _connect_delay for slow starting servers
* docs: update link for filescom
* test_all: make TestWebdav InfiniteScale integration tests run
* test_all: make SMB with Kerberos integration tests run properly
* test_all: allow an env parameter to set environment variables
* Changelog updates from Version v1.70.2
* Add Ali Zein Yousuf to contributors
* Add $@M@RTH_ to contributors
* docs: update client ID instructions to current Azure AD portal - fixes #8027
* s3: add Zata provider
* pacer: fix nil pointer deref in RetryError - fixes #8077
* docs: Remove Warp as a sponsor
* docs: add files.com as a Gold sponsor
* docs: add links to SecureBuild docker image
* Add curlwget to contributors
* convmv: fix moving to unicode-equivalent name - fixes #8634
* transform: add truncate_keep_extension and truncate_bytes
* convmv: make --dry-run logs less noisy
* sync: avoid copying dir metadata to itself
* docs: fix some function names in comments
* combine: fix directory not found errors with ListP interface - Fixes #8627
* local: fix --skip-links on Windows when skipping Junction points
* Add Marvin Rsch to contributors
* build: bump github.com/go-chi/chi/v5 from 5.2.1 to 5.2.2 to fix GHSA-vrw8-fxc6-2r93
* copy,copyto,move,moveto: implement logger flags to store result of sync
* log: fix deadlock when using systemd logging - fixes #8621
* docs: googlephotos: detail how to make your own client_id - fixes #8622
* Add necaran to contributors
* mega: fix tls handshake failure - fixes #8565
* Changelog updates from Version v1.70.1
* Add jinjingroad to contributors
* docs: DOI grammar error
* docs: lib/transform: cleanup formatting
* lib/transform: avoid empty charmap entry
* chore: fix function name
* convmv: fix spurious "error running command echo" on Windows
* docs: client-credentials is not support by all backends
* Start v1.71.0-DEV development
- Update to version 1.70.3:
* Version v1.70.3
* azureblob: fix server side copy error "requires exactly one scope"
* docs: explain the json log format in more detail
* check: fix difference report (was reporting error counts)
* linkbox: fix upload error "user upload file not exist"
* march: fix deadlock when using --no-traverse - fixes #8656
* pikpak: improve error handling for missing links and unrecoverable 500s
* webdav: fix setting modtime to that of local object instead of remote
* fix: b2 versionAt read metadata
* Start v1.70.3-DEV development
* docs: fix filescom/filelu link mixup
* docs: update link for filescom
- Update to version 1.70.2:
* Version v1.70.2
* docs: update client ID instructions to current Azure AD portal - fixes #8027
* mega: fix tls handshake failure - fixes #8565
* pacer: fix nil pointer deref in RetryError - fixes #8077
* convmv: fix moving to unicode-equivalent name - fixes #8634
* convmv: make --dry-run logs less noisy
* sync: avoid copying dir metadata to itself
* combine: fix directory not found errors with ListP interface - Fixes #8627
* local: fix --skip-links on Windows when skipping Junction points
* build: bump github.com/go-chi/chi/v5 from 5.2.1 to 5.2.2 to fix GHSA-vrw8-fxc6-2r93
* log: fix deadlock when using systemd logging - fixes #8621
* docs: googlephotos: detail how to make your own client_id - fixes #8622
* pikpak: fix uploads fail with "aws-chunked encoding is not supported" error
* Start v1.70.2-DEV development
* docs: Remove Warp as a sponsor
* docs: add files.com as a Gold sponsor
* docs: add links to SecureBuild docker image
- Update to version 1.70.1:
* Version v1.70.1
* docs: DOI grammar error
* docs: lib/transform: cleanup formatting
* lib/transform: avoid empty charmap entry
* chore: fix function name
* convmv: fix spurious "error running command echo" on Windows
* docs: client-credentials is not support by all backends
* Start v1.70.1-DEV development
- Update to version 1.70.0:
* Version v1.70.0
* ftp: add --ftp-http-proxy to connect via HTTP CONNECT proxy
* pcloud: fix "Access denied. You do not have permissions to perform this operation" on large uploads
* operations: fix TransformFile when can't server-side copy/move
* fstest: fix -verbose flag after logging revamp
* googlecloudstorage: fix directory marker after // changes in #5858
* s3: fix directory marker after // changes in #5858
* azureblob: fix directory marker after // changes in #5858
* tests: ignore some more habitually failing tests
* googlephotos: fix typo in error message - Fixes #8600
* s3: MEGA S4 support
* Add Ser-Bul to contributors
* chunker: fix double-transform
* docs: mailru: added note about permissions level choice for the apps password
* tests: ignore habitually failing tests and backends
* docs: link to asciinema rather than including the js
* docs: target="_blank" must have rel="noopener"
* sync: fix testLoggerVsLsf when dst is local
* docs: fix FileLu docs
* build: update all dependencies
* onedrive: fix crash if no metadata was updated
* Add kingston125 to contributors
* Add Flora Thiebaut to contributors
* Add FileLu cloud storage backend
* doi: add new doi backend
* build: fix check_autogenerated_edits.py flagging up files that didn't exist
* docs: rc: add more info on how to discover _config and _filter parameters #8584
* s3: add Exaba provider
* convmv: add convmv command
* lib/transform: add transform library and --name-transform flag
* march: split src and dst
* Add ahxxm to contributors
* Add Nathanael Demacon to contributors
* b2: use file id from listing when not presented in headers - fixes #8113
* fs: fix goroutine leak and improve stats accounting process
* march: fix syncing with a duplicate file and directory
* Add PrathameshLakawade to contributors
* Add Oleksiy Stashok to contributors
* docs: fix page_facing_up typo next to Lyve Cloud in README.md
* backend/s3: require custom endpoint for Lyve Cloud v2 support
* backend: skip hash calculation when the hashType is None - fixes #8518
* azureblob: fix multipart server side copies of 0 sized files
* Add Jeremy Daer to contributors
* Add wbulot to contributors
* s3: add Pure Storage FlashBlade provider support (#8575)
* backend/gofile: update to use new direct upload endpoint
* log: add --windows-event-log-level to support Windows Event Log
* fs: Remove github.com/sirupsen/logrus and replace with log/slog
* Add fhuber to contributors
* cmd serve s3: fix ListObjectsV2 response
* Changelog updates from Version v1.69.3
* onedrive: re-add --onedrive-upload-cutoff flag
* onedrive: fix "The upload session was not found" errors
* Add Germn Casares to contributors
* Add Jeff Geerling to contributors
* googlephotos: update read only and read write scopes to meet Google's requirements.
* build: update github.com/ebitengine/purego to v0.8.3 to fix mac_amd64 build
* docs: add hint about config touch and config file not found
* docs: add FAQ for dismissing 'rclone.conf not found'
* docs: document how to keep an out of tree backend
* Add Clment Wehrung to contributors
* iclouddrive: fix panic and files potentially downloaded twice
* docs: move --max-connections documentation to the correct place
* Add Ben Boeckel to contributors
* Add Tho Neyugn to contributors
* docs: fix typo in s3/storj docs
* serve s3: remove redundant handler initialization
* Changelog updates from Version 1.69.2
* sftp: add --sftp-http-proxy to connect via HTTP CONNECT proxy
* Add Jugal Kishore to contributors
* docs: correct SSL docs anchor link from #ssl-tls to #tls-ssl
* drive: metadata: fix error when setting copy-requires-writer-permission on a folder
* docs: Update contributors
* build: bump golang.org/x/net from 0.36.0 to 0.38.0
* Update README.md
* docs: fix typos via codespell
* webdav: add an ownCloud Infinite Scale vendor that enables tus chunked upload support
* onedrive: fix metadata ordering in permissions
* Add Ben Alex to contributors
* Add simwai to contributors
* iclouddrive: fix so created files are writable
* cmd/authorize: show required arguments in help text
* cloudinary: var naming convention - #8416
* cloudinary: automatically add/remove known media files extensions #8416
* Add Markus Gerstel to contributors
* Add Enduriel to contributors
* Add huanghaojun to contributors
* Add simonmcnair to contributors
* Add Samantha Bowen to contributors
* s3: documentation regression - fixes #8438
* hash: add SHA512 support for file hashes
* vfs: fix inefficient directory caching when directory reads are slow
* docs: update fuse version in docker docs
* fs/config: Read configuration passwords from stdin even when terminated with EOF - fixes #8480
* cmd/gitannex: Reject unknown layout modes in INITREMOTE
* cmd/gitannex: Add configparse.go and refactor
* cmd/gitannex: Permit remotes with options
* serve ftp: add serve rc interface
* serve sftp: add serve rc interface
* serve restic: add serve rc interface
* serve s3: add serve rc interface
* serve dlna: add serve rc interface
* serve webdav: add serve rc interface - fixes #4505
* serve http: add serve rc interface
* serve nfs: add serve rc interface
* serve: Add rc control for serve commands #4505
* configstruct: add SetAny to parse config from the rc
* rc: In options/info make FieldName contain a "." if it should be nested
* serve restic: convert options to new style
* serve s3: convert options to new style
* serve http: convert options to new style
* serve webdav: convert options to new style
* auth proxy: convert options to new style
* auth proxy: add VFS options parameter for use for default VFS
* serve: make the servers self registering
* lib/http: fix race between Serve() and Shutdown()
* lib/http: add Addr() method to return the first configured server address
* Add Danny Garside to contributors
* docs: fix minor typo in box docs
* sync: implement --list-cutoff to allow on disk sorting for reduced memory use
* march: Implement callback based syncing
* list: add ListDirSortedFn for callback oriented directory listing
* list: Implement Sorter to sort directory entries
* cache: mark ListP as not supported yet
* hasher: implement ListP interface
* compress: implement ListP interface
* chunker: mark ListP as not supported yet
* union: mark ListP as not supported yet
* crypt: implement ListP interface
* combine: implement ListP interface
* s3: Implement paged listing interface ListP
* list: add WithListP helper to implement List for ListP backends
* walk: move NewListRHelper into list.Helper to avoid circular dependency
* fs: define ListP interface for paged listing #4788
* accounting: Add listed stat for number of directory entries listed
* walk: factor Listing helpers into their own file and add tests
* serve nfs: make metadata files have special file handles
* serve nfs: change the format of --nfs-cache-type symlink file handles
* vfs: add --vfs-metadata-extension to expose metadata sidecar files
* docs: Add rcloneui.com as Silver Sponsor
* Add Klaas Freitag to contributors
* Add eccoisle to contributors
* Add Fernando Fernndez to contributors
* Add alingse to contributors
* Add Jrn Friedrich Dreyer to contributors
* docs: replace option --auto-filename-header with --header-filename
* build: update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to fix CVE-2025-30204
* docs/googlephotos: fix typos
* build: bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2
* operations: fix call fmt.Errorf with wrong err
* webdav: retry propfind on 425 status
* Add --max-connections to control maximum backend concurrency
* rc: fix debug/* commands not being available over unix sockets
* cmd/gitannex: Prevent tests from hanging when assertion fails
* cmd/gitannex: Add explicit timeout for mock stdout reads in tests
* http: correct root if definitely pointing to a file - fixes #8428
* pool: add --max-buffer-memory to limit total buffer memory usage
* filter: Add `--hash-filter` to deterministically select a subset of files
* build: update golang.org/x/net to 0.36.0. to fix CVE-2025-22869
* rc: add add short parameter to core/stats to not return transferring and checking
* fs: fix corruption of SizeSuffix with "B" suffix in config (eg --min-size)
* filters: show --min-size and --max-size in --dump filters
* build: check docs for edits of autogenerated sections
* Add jack to contributors
* docs: fix incorrect mentions of vfs-cache-min-free-size
* fs/object: fix memory object out of bounds Seek
* serve nfs: fix unlikely crash
* docs: update minimum OS requirements for go1.24
* cmd/gitannex: Tweak parsing of "rcloneremotename" config
* cmd/gitannex: Drop var rebindings now that we have go1.23
* docs: add note for using rclone cat for slicing out a byte range from a file
* rcserver: improve content-type check
* build: modernize Go usage
* build: update all dependencies and fix deprecations
* build: update golang.org/x/crypto to v0.35.0 to fix CVE-2025-22869
* build: make go1.23 the minimum go version
* cmd/gitannex: Add to integration tests
* cmd/gitannex: Simplify verbose failures in tests
* cmd/gitannex: Port unit tests to fstest
* vfs: fix integration test failures
* azureblob: fix errors not being retried when doing single part copy
* azureblob: handle retry error codes more carefully
* touch: make touch obey --transfers
* Add luzpaz to contributors
* Add Dave Vasilevsky to contributors
* docs: fix various typos Found via
* dropbox: Retry link without expiry
* Dropbox: Support Dropbox Paper
* chore: update contributor email
* docs: correct stable release workflow
* Add Lorenz Brun to contributors
* Add Michael Kebe to contributors
* vfs: fix directory cache serving stale data
* build: fix docker plugin build - fixes #8394
* docs: improved sftp limitations
* Changelog updates from Version v1.69.1
* docs: add FileLu as sponsors and tidy sponsor logos
* accounting: fix percentDiff calculation -- fixes #8345
* vfs: fix the cache failing to upload symlinks when --links was specified
* Add jbagwell-akamai to contributors
* Add ll3006 to contributors
* doc: add note on concurrency of rclone purge
* s3: add latest Linode Object Storage endpoints
* cmd: fix crash if rclone is invoked without any arguments - Fixes #8378
* build: disable docker builds on PRs & add missing dockerfile changes
* sync: copy dir modtimes even when copyEmptySrcDirs is false - fixes #8317
* sync: add tests to check dir modtimes are kept when syncing
* fix golangci-lint errors
* bisync: fix false positive on integration tests
* s3: split the GCS quirks into -s3-use-x-id and -s3-sign-accept-encoding #8373
* Add Joel K Biju to contributors
* stats: fix the speed not getting updated after a pause in the processing
* opendrive: added --opendrive-access flag to handle permissions
* bisync: fix listings missing concurrent modifications - fixes #8359
* Added parallel docker builds and caching for go build in the container
* smb: improve connection pooling efficiency
* lib/oauthutil: fix redirect URL mismatch errors - fixes #8351
* b2: fix "fatal error: concurrent map writes" - fixes #8355
* Add Alexander Minbaev to contributors
* Add Zachary Vorhies to contributors
* Add Jess to contributors
* s3: add IBM IAM signer - fixes #7617
* serve nfs: update docs to note Windows is not supported - fixes #8352
* cmd/config(update remote): introduce --no-output option
* s3: add DigitalOcean regions SFO2, LON1, TOR1, BLR1
* sync: fix cpu spinning when empty directory finding with leading slashes
* s3: fix handling of objects with // in #5858
* azureblob: fix handling of objects with // in #5858
* fstest: add integration tests objects with // on bucket based backends #5858
* fs/list: tweak directory listing assertions after allowing // names
* lib/bucket: fix tidying of // in object keys #5858
* lib/bucket: add IsAllSlashes function
* azureblob: remove uncommitted blocks on InvalidBlobOrBlock error
* azureblob: implement multipart server side copy
* azureblob: speed up server side copies for small files #8249
* azureblob: cleanup uncommitted blocks on upload errors
* azureblob: factor readMetaData into readMetaDataAlways returning blob properties
* Add b-wimmer to contributors
* azurefiles: add --azurefiles-use-az and --azurefiles-disable-instance-discovery
* onedrive: mark German (de) region as deprecated
* Add Trevor Starick to contributors
* Add hiddenmarten to contributors
* Add Corentin Barreau to contributors
* Add Bruno Fernandes to contributors
* Add Moises Lima to contributors
* Add izouxv to contributors
* Add Robin Schneider to contributors
* Add Tim White to contributors
* Add Christoph Berger to contributors
* azureblob: add support for `x-ms-tags` header
* rc: disable the metrics server when running `rclone rc`
* internetarchive: add --internetarchive-metadata="key=value" for setting item metadata
* lib/batcher: Deprecate unused option: batch_commit_timeout
* s3: Added new storage class to magalu provider
* http servers: add --user-from-header to use for authentication
* b2: add SkipDestructive handling to backend commands - fixes #8194
* vfs: close the change notify channel on Shutdown
* Docker image: Add label org.opencontainers.image.source for release notes in Renovate dependency updates
* docs: add OneDrive Impersonate instructions - fixes #5610
* docs: explain the stringArray flag parameter descriptor
* iclouddrive: add notes on ADP and Missing PCS cookies - fixes #8310
* docs: fix typos found by codespell in docs and code comments
* fs: fix confusing "didn't find section in config file" error
* vfs: fix race detected by race detector
* Add Jonathan Giannuzzi to contributors
* Add Spencer McCullough to contributors
* Add Matt Ickstadt to contributors
* smb: add support for kerberos authentication
* drive: added `backend moveid` command
* docs: fix reference to serves3 setting disable_multipart_uploads which was renamed
* docs: fix link to Rclone Serve S3
* serve s3: fix list objects encoding-type
* build: update gopkg.in/yaml.v2 to v3
* build: update all dependencies
* bisync: fix go vet problems with go1.24
* build: update to go1.24rc1 and make go1.22 the minimum required version
* version: add --deps flag to show dependencies and other build info
* doc: make man page well formed for whatis - fixes #7430
* Start v1.70.0-DEV development
- Install completion files in the right place.
- Update to version 1.69.3:
* build: update github.com/ebitengine/purego to work around bug in go1.24.3
* build: reapply update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to fix CVE-2025-30204
- Update to version 1.69.2:
- Bug fixes
- accounting: Fix percentDiff calculation -- (Anagh Kumar
Baranwal)
- build
- Update github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 to
fix CVE-2025-30204 (dependabot[bot])
- Update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to
fix CVE-2025-30204 (dependabot[bot])
- Update golang.org/x/crypto to v0.35.0 to fix CVE-2025-22869
(Nick Craig-Wood)
- Update golang.org/x/net from 0.36.0 to 0.38.0 to fix
CVE-2025-22870 (dependabot[bot])
- Update golang.org/x/net to 0.36.0. to fix CVE-2025-22869
(dependabot[bot])
- Stop building with go < go1.23 as security updates forbade
it (Nick Craig-Wood)
- Fix docker plugin build (Anagh Kumar Baranwal)
- cmd: Fix crash if rclone is invoked without any arguments
(Janne Hellsten)
- config: Read configuration passwords from stdin even when
terminated with EOF (Samantha Bowen)
- doc fixes (Andrew Kreimer, Danny Garside, eccoisle, Ed
Craig-Wood, emyarod, jack, Jugal Kishore, Markus Gerstel,
Michael Kebe, Nick Craig-Wood, simonmcnair, simwai, Zachary
Vorhies)
- fs: Fix corruption of SizeSuffix with "B" suffix in config
(eg --min-size) (Nick Craig-Wood)
- lib/http: Fix race between Serve() and Shutdown() (Nick
Craig-Wood)
- object: Fix memory object out of bounds Seek (Nick
Craig-Wood)
- operations: Fix call fmt.Errorf with wrong err (alingse)
- rc
- Disable the metrics server when running rclone rc
(hiddenmarten)
- Fix debug/* commands not being available over unix sockets
(Nick Craig-Wood)
- serve nfs: Fix unlikely crash (Nick Craig-Wood)
- stats: Fix the speed not getting updated after a pause in the
processing (Anagh Kumar Baranwal)
- sync
- Fix cpu spinning when empty directory finding with leading
slashes (Nick Craig-Wood)
- Copy dir modtimes even when copyEmptySrcDirs is false
(ll3006)
- vfs
- Fix directory cache serving stale data (Lorenz Brun)
- Fix inefficient directory caching when directory reads are
slow (huanghaojun)
- Fix integration test failures (Nick Craig-Wood)
- Drive
- Metadata: fix error when setting
copy-requires-writer-permission on a folder (Nick Craig-Wood)
- Dropbox
- Retry link without expiry (Dave Vasilevsky)
- HTTP
- Correct root if definitely pointing to a file (nielash)
- Iclouddrive
- Fix so created files are writable (Ben Alex)
- Onedrive
- Fix metadata ordering in permissions (Nick Craig-Wood)
- Update to version 1.69.1:
* Version v1.69.1
* build: disable docker builds on PRs & add missing dockerfile changes
* Added parallel docker builds and caching for go build in the container
* docs: add FileLu as sponsors and tidy sponsor logos
* vfs: fix the cache failing to upload symlinks when --links was specified
* doc: add note on concurrency of rclone purge
* s3: add latest Linode Object Storage endpoints
* fix golangci-lint errors
* bisync: fix listings missing concurrent modifications - fixes #8359
* lib/oauthutil: fix redirect URL mismatch errors - fixes #8351
* b2: fix "fatal error: concurrent map writes" - fixes #8355
* serve nfs: update docs to note Windows is not supported - fixes #8352
* s3: add DigitalOcean regions SFO2, LON1, TOR1, BLR1
* onedrive: mark German (de) region as deprecated
* s3: Added new storage class to magalu provider
* vfs: close the change notify channel on Shutdown
* docs: add OneDrive Impersonate instructions - fixes #5610
* docs: explain the stringArray flag parameter descriptor
* iclouddrive: add notes on ADP and Missing PCS cookies - fixes #8310
* docs: fix typos found by codespell in docs and code comments
* fs: fix confusing "didn't find section in config file" error
* vfs: fix race detected by race detector
* docs: fix reference to serves3 setting disable_multipart_uploads which was renamed
* docs: fix link to Rclone Serve S3
* serve s3: fix list objects encoding-type
* doc: make man page well formed for whatis - fixes #7430
* Start v1.69.1-DEV development
- Update to version 1.69.0:
https://rclone.org/changelog/#v1-69-0-2025-01-12
Rclone is using golang.org/x/net but was not affected to
CVE-2024-45337 and CVE-2024-45338.
* Version v1.69.0
* test_all: disable docker plugin tests
* docs: fix typo
* accounting: fix race stopping/starting the stats counter
* docs: add github.com/icholy/gomajor to RELEASE for updating major versions
* ftp: fix ls commands returning empty on "Microsoft FTP Service" servers
* s3: add docs on data integrity
* webdav: make --webdav-auth-redirect to fix 401 unauthorized on redirect
* rest: make auth preserving redirects an option
* box: fix panic when decoding corrupted PEM from JWT file
* size: make output compatible with -P
* vfs: add remote name to vfs cache log messages - fixes #7952
* dropbox: fix return status when full to be fatal error
* rc: add relative to vfs/queue-set-expiry
* vfs: fix open files disappearing from directory listings
* docker serve: parse all remaining mount and VFS options
* smb: fix panic if stat fails
* googlephotos: fix nil pointer crash on upload - fixes #8233
* iclouddrive: tweak docs
* serve dlna: sort the directory entries by directories first then alphabetically by name
* serve nfs: fix missing inode numbers which was messing up ls -laR
* serve nfs: implement --nfs-cache-type symlink
* azureblob,oracleobjectstorage,s3: quit multipart uploads if the context is cancelled
* http: fix incorrect URLs with initial slash
* build: update `github.com/shirou/gopsutil` to v4
* Replace Windows-specific NewLazyDLL with NewLazySystemDLL
* lib/oauthutil: don't require token to exist for client credentials flow
* fs/operations: make log messages consistent for mkdir/rmdir at INFO level
* Add Francesco Frassinelli to contributors
* smb: Add support for Kerberos authentication.
* docs: smb: link to CloudSoda/go-smb2 fork
* cloudinary: add cloudinary backend - fixes #7989
* operations: fix eventual consistency in TestParseSumFile test
* Add TAKEI Yuya to contributors
* docs: Remove Backblaze as a Platinum sponsor
* docs: add RcloneView as silver sponsor
* serve docker: fix incorrect GID assignment
* serve s3: fix Last-Modified timestamp
* Add ToM to contributors
* Add Henry Lee to contributors
* Add Louis Laureys to contributors
* docs: filtering: mention feeding --files-from from standard input
* docs: filtering: fix --include-from copypaste error
* s3: rename glacier storage class to flexible retrieval
* b2: add daysFromStartingToCancelingUnfinishedLargeFiles to backend lifecycle command
* build: update golang.org/x/net to v0.33.0 to fix CVE-2024-45338
* azurefiles: fix missing x-ms-file-request-intent header
* Add Thomas ten Cate to contributors
* docs: Document --url and --unix-socket on the rc page
* docs: link to the outstanding vfs symlinks issue
* Add Yxxx to contributors
* Add hayden.pan to contributors
* docs: update pcloud doc to avoid puzzling token error when use remote rclone authorize
* pikpak: add option to use original file links - fixes #8246
* rc/job: use mutex for adding listeners thread safety
* docs: mention in serve tls options when value is path to file - fixes #8232
* build: update all dependencies
* accounting: fix debug printing when debug wasn't set
* Add Filipe Azevedo to contributors
* fs: make --links flag global and add new --local-links and --vfs-links flag
* vfs: add docs for -l/--links flag
* nfsmount,serve nfs: introduce symlink support #2975
* mount2: introduce symlink support #2975
* mount: introduce symlink support #2975
* cmount: introduce symlink support #2975
* vfstest: make VFS test suite support symlinks
* vfs: add symlink support to VFS
* vfs: add ELOOP error
* vfs: Add link permissions
* vfs: Add VFS --links command line switch
* vfs: add vfs.WriteFile to match os.WriteFile
* fs: Move link suffix to fs
* cmount: fix problems noticed by linter
* mount2: Fix missing . and .. entries
* sftp: fix nil check when using auth proxy
* Add Martin Hassack to contributors
* serve sftp: resolve CVE-2024-45337
* googlecloudstorage: typo fix in docs
* onedrive: add support for OAuth client credential flow - fixes #6197
* lib/oauthutil: add support for OAuth client credential flow
* lib/oauthutil: return error messages from the oauth process better
* bin/test_backend_sizes.py fix compile flags and s3 reporting
* test makefiles: add --flat flag for making directories with many entries
* Add divinity76 to contributors
* Add Ilias Ozgur Can Leonard to contributors
* Add remygrandin to contributors
* Add Michael R. Davis to contributors
* cmd/mountlib: better snap mount error message
* vfs: with --vfs-used-is-size value is calculated and then thrown away - fixes #8220
* serve sftp: fix loading of authorized keys file with comment on last line - fixes #8227
* oracleobjectstorage: make specifying compartmentid optional
* plcoud: fix failing large file uploads - fixes #8147
* docs: add docker volume plugin troubleshooting steps
* docs: fix missing `state` parameter in `/auth` link in instructions
* build: fix build failure on ubuntu
* docs: upgrade fontawesome to v6
* s3: fix multitenant multipart uploads with CEPH
* Add David Seifert to contributors
* Add vintagefuture to contributors
* use better docs
* googlecloudstorage: update docs on service account access tokens
* test_all: POSIX head/tail invocations
* icloud: Added note about app specific password not working
* s3: fix download of compressed files from Cloudflare R2 - fixes #8137
* s3: fix testing tiers which don't exist except on AWS
* Changelog updates from Version v1.68.2
* local: fix permission and ownership on symlinks with --links and --metadata
* Revert "Merge commit from fork"
* Add Dimitrios Slamaris to contributors
* Merge commit from fork
* onedrive: fix integration tests after precision change
* operations: fix TestRemoveExisting on crypt backends by shortening the file name
* bisync: fix output capture restoring the wrong output for logrus
* serve sftp: update github.com/pkg/sftp to v1.13.7 and fix deadlock in tests
* build: fix comments after golangci-lint upgrade
* build: update all dependencies
* build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1
* pikpak: fix fatal crash on startup with token that can't be refreshed
* yandex: fix server side copying over existing object
* sugarsync: fix server side copying over existing object
* putio: fix server side copying over existing object
* onedrive: fix server side copying over existing object
* dropbox: fix server side copying over existing object
* operations: add RemoveExisting to safely remove an existing file
* gofile: fix server side copying over existing object
* test_all: try to fix mailru rate limits in integration tests
* Add shenpengfeng to contributors
* Add Dimitar Ivanov to contributors
* docs: fix function name in comment
* sftp: allow inline ssh public certificate for sftp
* serve s3: fix excess locking which was making serve s3 single threaded
* lib/oauthutil: allow the browser opening function to be overridden
* Add Moises Lima to contributors
* lib/http: disable automatic authentication skipping for unix sockets
* onedrive: fix Retry-After handling to look at 503 errors also
* s3: Storj provider: fix server-side copy of files bigger than 5GB
* s3: add Selectel as a provider
* fs: fix Don't know how to set key "chunkSize" on upload errors in tests
* drive: implement rclone backend rescue to rescue orphaned files
* Add tgfisher to contributors
* Add Diego Monti to contributors
* Add Randy Bush to contributors
* Add Alexandre Hamez to contributors
* Add Simon Bos to contributors
* docs: mention that inline comments are not supported in a filter-file
* s3: add Wasabi eu-south-1 region
* docs: fix forward refs in step 9 of using your own client id
* docs: fix Scaleway Glacier website URL
* dlna: fix loggingResponseWriter disregarding log level
* build: remove required property on boolean inputs
* build: use inputs context in github workflow
* s3: fix crash when using --s3-download-url after migration to SDKv2
* docs: update overview to show pcloud can set modtime
* Add Andr Tran to contributors
* Add Matthias Gatto to contributors
* Add lostb1t to contributors
* Add Noam Ross to contributors
* Add Benjamin Legrand to contributors
* s3: add Outscale provider
* Add ICloud Drive backend
* drive: add support for markdown format
* accounting: fix global error acounting
* onedrive: fix time precision for OneDrive personal
* Add RcloneView as a sponsor
* Add Leandro Piccilli to contributors
* cache: skip bisync tests
* bisync: allow blank hashes on tests
* box: fix server-side copying a file over existing dst - fixes #3511
* sync: add tests for copying/moving a file over itself
* fs/cache: fix parent not getting pinned when remote is a file
* gcs: add access token auth with --gcs-access-token
* accounting: write the current bwlimit to the log on SIGUSR2
* accounting: fix wrong message on SIGUSR2 to enable/disable bwlimit
* gphotos: implment --gphotos-proxy to allow download of full resolution media
* googlephotos: remove noisy debugging statements
* docs: add note to CONTRIBUTING that the overview needs editing in 2 places
* test_all: add ignoretests parameter for skipping certain tests
* build: replace "golang.org/x/exp/slices" with "slices" now go1.21 is required
* Changelog updates from Version v1.68.1
* Makefile: Fail when doc recipes create dir named '$HOME'
* Makefile: Prevent `doc` recipe from creating dir named '$HOME'
* pikpak: fix cid/gcid calculations for fs.OverrideRemote
* bisync: change exit code from 2 to 7 for critically aborted run
* cmd: change exit code from 1 to 2 for syntax and usage errors
* local: fix --copy-links on macOS when cloning
* azureblob: add --azureblob-use-az to force the use of the Azure CLI for auth
* azureblob: add --azureblob-disable-instance-discovery
* s3: add initial --s3-directory-bucket to support AWS Directory Buckets
* Add Lawrence Murray to contributors
* backend/protondrive: improve performance of Proton Drive backend
* ftp: implement --ftp-no-check-upload to allow upload to write only dirs
* docs: document that fusermount3 may be needed when mounting/unmounting
* Add rishi.sridhar to contributors
* Add quiescens to contributors
* docs/zoho: update options
* zoho: make upload cutoff configurable
* zoho: add support for private spaces
* zoho: try to handle rate limits a bit better
* zoho: print clear error message when missing oauth scope
* zoho: switch to large file upload API for larger files, fix missing URL encoding of filenames for the upload API
* zoho: use download server to accelerate downloads
* opendrive: add about support to backend
* pikpak: fix login issue where token retrieval fails
* webdav: nextcloud: implement backoff and retry for 423 LOCKED errors
* s3: fix rclone ignoring static credentials when env_auth=true
* fs: fix setting stringArray config values from environment variables
* rc: fix default value of --metrics-addr
* fs: fix --dump filters not always appearing
* docs: correct notes on docker manual build
* Add ttionya to contributors
* build: fix docker release build - fixes #8062
* docs: add section for improving performance for s3
* onedrive: fix spurious "Couldn't decode error response: EOF" DEBUG
* Add Divyam to contributors
* serve docker: add missing vfs-read-chunk-streams option in docker volume driver
* Start v1.69.0-DEV development
- Update to version 1.68.2:
* Version v1.68.2
* s3: fix multitenant multipart uploads with CEPH
* local: fix permission and ownership on symlinks with --links and --metadata
CVE-2024-52522 boo#1233422
* bisync: fix output capture restoring the wrong output for logrus
* build: fix comments after golangci-lint upgrade
* build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1
* pikpak: fix fatal crash on startup with token that can't be refreshed
* serve s3: fix excess locking which was making serve s3 single threaded
* onedrive: fix Retry-After handling to look at 503 errors also
* s3: Storj provider: fix server-side copy of files bigger than 5GB
* docs: mention that inline comments are not supported in a filter-file
* docs: fix forward refs in step 9 of using your own client id
* docs: fix Scaleway Glacier website URL
* dlna: fix loggingResponseWriter disregarding log level
* s3: fix crash when using --s3-download-url after migration to SDKv2
* docs: update overview to show pcloud can set modtime
* Add RcloneView as a sponsor
* accounting: fix wrong message on SIGUSR2 to enable/disable bwlimit
* pikpak: fix cid/gcid calculations for fs.OverrideRemote
* local: fix --copy-links on macOS when cloning
* Start v1.68.2-DEV development
- CVE-2024-51744: updated jwt to v4.5.1 (bsc#1232964).
Patchnames: openSUSE-Leap-16.0-packagehub-213
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.1 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
47 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rclone",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rclone fixes the following issues:\n\nChanges in rclone:\n\n- Update to version 1.73.5:\n * Version v1.73.5\n * operations: add AuthRequired to operations/fsinfo to prevent backend creation CVE-2026-41179\n * rc: snapshot NoAuth at startup to prevent runtime auth bypass CVE-2026-41176\n * rc: add AuthRequired to options/set to prevent auth bypass CVE-2026-41176\n * s3: fix empty delimiter parameter rejected by Archiware P5 server\n * azureblob/auth: add Microsoft Partner Network User-Agent prefix\n * drime: fix User.EntryPermissions JSON unmarshalling\n * filter: fix debug logs that fire before logger is configured - fixes #9291\n * s3: fix TencentCOS CDN endpoint failing on bucket check\n * iclouddrive: fix \u0027directory not found\u0027 error when the directory contains accent marks\n * Start v1.73.5-DEV development\n\n- Update to version 1.73.4:\n * Version v1.73.4\n * Update to go 1.25.9 to fix multiple CVEs\n * build: fix Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder\n * docs: fix markdown issues in mount docs\n * docs: fix header level for metadata option\n * fix(docs): Fix link to not be language specific\n * filen: update SDK version\n * build(deps): bump golang.org/x/image from 0.36.0 to 0.38.0\n * docs: note macOS 10.15 (Catalina) support with version v1.70.3\n * Start v1.73.4-DEV development\n\n- Update to version 1.73.3: (CVE-2026-33186 GHSA-6g7g-w4f8-9c9x)\n * Version v1.73.3\n * build(deps): bump github.com/buger/jsonparser from 1.1.1 to 1.1.2\n * docs/jottacloud: fix broken link\n * docs: clarify Filen password change requires updating both password and API key in rclone config\n * docs: note that Filen API key changes on password change\n * build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\n * s3: add multi tenant support for Cubbit\n * lib/rest: fix URLPathEscapeAll breaking WebDAV servers (eg nzbdav) with strict path matching\n * list: fix nil pointer panic in Sorter when temp file creation fails\n * docs: update RELEASE procedure to avoid mistakes\n * docs: added text to the label showing version-introduced info\n * Start v1.73.3-DEV development\n * docs: update sponsors\n\n- Update to version 1.73.2:\n * Version v1.73.2\n * Update to go 1.25.8 to fix multiple CVEs\n * build: update to golang.org/x/net v0.51.0 to fix CVE-2026-27141 #9220\n * docs: fix new drive flag typo in changelog\n * webdav: add missing headers for CORS\n * docs: Document unsupported S3 object keys with double slashes\n * docs: note that --use-server-modtime only works on some backends\n * internxt: fix Entry doesn\u0027t belong in directory errors on windows\n * drime: fix chunk-uploaded files ignoring workspace ID\n * docs: Fix headers hierarchy for mount.md\n * webdav: escape reserved characters in URL path segments\n * bisync: add group Sync to the bisync command\n * archive: extract: strip \"./\" prefix from tar entry paths\n * docs: add instructions on how to update Go version\n * buid: update github.com/cloudflare/circl to v1.6.3 to fix CVE-2026-1229\n * Start v1.73.2-DEV development\n\n- Update to version 1.73.1:\n * Version v1.73.1\n * build: fix build using go 1.26.0 instead of go 1.25.7\n * fs/march: fix runtime: program exceeds 10000-thread limit\n * accounting: fix missing server side stats from core/stats rc\n * pacer: re-read the sleep time as it may be stale\n * pacer: fix deadlock between pacer token and --max-connections\n * build: fix CVE-2025-68121 by updating go to 1.25.7 or later - fixes #9167\n * drime: fix files and directories being created in the default workspace\n * docs: update sponsors\n * copyurl: Extend copyurl docs with an example of CSV FILENAMEs starting with a path.\n * internxt: implement re-login under refresh logic, improve retry logic - fixes #9174\n * docs: add ExchangeRate-API as a sponsor\n * build: bump github.com/go-chi/chi/v5 from 5.2.3 to 5.2.5 to fix GO-2026-4316\n * Set list_version to 2 for FileLu S3 configuration\n * filelu: add multipart upload support with configurable cutoff\n * filelu: add multipart init response type\n * filelu: add comment for response body wrapping\n * filelu: avoid buffering entire file in memory\n * docs: update sponsor logos\n * filen: fix potential panic in case of error during upload\n * filen: fix 32 bit targets not being able to list directories Fixes #9142\n * Start v1.73.1-DEV development\n\n- Update to version 1.73.0:\n * Version v1.73.0\n * drive: fix crash when trying to creating shortcut to a Google doc\n * azureblob,azurefiles: factor the common auth into a library\n * test: allow backends to return fs.ErrorCantListRoot to skip Root tests\n * build: add privatebeta Makefile target\n * docs: add Internxt as a sponsor\n * internxt: remove use of CVE laden github.com/disintegration/imaging\n * docs: fix Internxt docs after merge\n * docs: update making a new backend docs\n * docs: build overview page from the backend data\n * docs: add tiering to the documentation - fixes #8873\n * docs: add data about each backend in YAML format\n * docs: add bin/manage_backends.py for managing the backend data files\n * internxt: use rclone\u0027s http.Client to enable more features\n * internxt: fix lint problems\n * Add StarHack to contributors\n * Add lullius to contributors\n * Add jzunigax2 to contributors\n * internxt: add Internxt backend - fixes #7610\n * drive: add --drive-metadata-force-expansive-access flag - Fixes #8980\n * test_all: allow drime more time to complete\n * onedrive: fix permissions on onedrive Personal\n * onedrive: fix require sign in for Onedrive Personal\n * onedrive: Onedrive Personal no longer supports description\n * onedrive: fix setting modification time on directories for onedrive Personal\n * onedrive: fix cancelling multipart upload\n * docs: fix WinFsp link in mount documentation\n * cmount: make work under OpenBSD - fixes #1727\n * vfs: make mount tests run on OpenBSD\n * docs: improve alignment of icons\n * protondrive: update to use forks of upstream modules\n * Add hyusap to contributors\n * Add Nick Owens to contributors\n * Add Mikel Olasagasti Uranga to contributors\n * docs: fix googlephotos custom client_id instructions\n * cmount: fix OpenBSD mount support.\n * fs: fix bwlimit: correctly report minutes\n * fs: fix bwlimit: use %d instead of %q for ints\n * mega: reverts TLS workaround\n * docs: fix formatting\n * docs: add faq entry about re-enabling old TLS ciphers\n * Add Marc-Philip to contributors\n * Add yy to contributors\n * filen: swap to blake3 hashes\n * docs: fix echo command syntax for password input\n * docs: fix typos in comments and messages\n * docs: fix use of removed rem macro\n * uptobox: remove backend as service is no longer available\n * rc: add operations/hashsumfile to sum a single file only\n * docs: update sponsor link\n * filen: add Filen backend - Fixes #6728\n * sftp: fix proxy initialisation\n * fstest: skip Copy mutation test with --sftp-copy-is-hardlink\n * fstest: Make Copy mutation test work properly\n * Add Qingwei Li to contributors\n * Add Nicolas Dessart to contributors\n * log: fix systemd adding extra newline - fixes #9086\n * oracleobjectstorage, sftp: eliminate unnecessary heap allocation\n * sftp,ftp: add http proxy authentication support\n * Add Drime backend\n * lib/rest: add opts.MultipartContentType to explicitly set Content-Type of attachements\n * dircache: allow empty string as root parent id\n * docs: update sponsors\n * s3: add provider Bizfly Cloud Simple Storage\n * docs: update sponsor logos\n * Add sys6101 to contributors\n * Add darkdragon-001 to contributors\n * Add vupn0712 to contributors\n * docs: add cloudinary to readme\n * docs: fix headers hierarchy in mount docs\n * s3: fix Copy ignoring storage class\n * serve s3: make errors in --s3-auth-key fatal - fixes #9044\n * Add masrlinu to contributors\n * pcloud: add support for real-time updates in mount\n * memory: add --memory-discard flag for speed testing - fixes #9037\n * Add vyv03354 to contributors\n * shade: Fix VFS test issues\n * docs: mention use of ListR feature in ls docs\n * build: bump actions/download-artifact from 6 to 7\n * build: bump actions/upload-artifact from 5 to 6\n * build: bump actions/cache from 4 to 5\n * docs: reflects the fact that pCloud supports ListR\n * S3: Linode: updated endpoints to use ISO 3166-1 alpha-2 standard\n * sync: fix error propagation in tests (#9025)\n * Changelog updates from Version v1.72.1\n * s3: add more regions for Selectel\n * Add jhasse-shade to contributors\n * Add Shade backend\n * log: fix backtrace not going to the --log-file #9014\n * build: fix lint warning after linter upgrade\n * Add Jonas Tingeborn to contributors\n * Add Tingsong Xu to contributors\n * configfile: add piped config support - fixes #9012\n * fs/log: fix PID not included in JSON log output\n * build: adjust lint rules to exclude new errors from linter update\n * proxy: fix error handling in tests spotted by the linter\n * Add Johannes Rothe to contributors\n * Add Leo to contributors\n * Add Vladislav Tropnikov to contributors\n * Add Cliff Frey to contributors\n * Add vicerace to contributors\n * b2: Fix listing root buckets with unrestricted API key\n * googlecloudstorage: improve endpoint parameter docs\n * serve webdav: implement download-directory-as-zip\n * s3: The ability to specify an IAM role for cross-account interaction\n * azureblob: add metadata and tags support across upload and copy paths\n * refactor: use strings.Cut to simplify code\n * docs: note where a provider has an S3 compatible alternative\n * Add Shade as sponsor\n * Add Duncan Smart to contributors\n * Add Diana to contributors\n * docs: Clarify OAuth scopes for readonly Google Drive access\n * b2: support authentication with new bucket restricted application keys\n * docs: update sponsor logos\n * docs: fix lint error in changelog\n * Start v1.73.0-DEV development\n\n- Update to version 1.72.1:\n * Version v1.72.1\n * s3: add more regions for Selectel\n * log: fix backtrace not going to the --log-file #9014\n * build: fix lint warning after linter upgrade\n * configfile: add piped config support - fixes #9012\n * fs/log: fix PID not included in JSON log output\n * build: adjust lint rules to exclude new errors from linter update\n * proxy: fix error handling in tests spotted by the linter\n * googlecloudstorage: improve endpoint parameter docs\n * docs: note where a provider has an S3 compatible alternative\n * Add Shade as sponsor\n * docs: Clarify OAuth scopes for readonly Google Drive access\n * docs: update sponsor logos\n * docs: fix lint error in changelog\n * Start v1.72.1-DEV development\n\n- Update to version 1.72.0:\n * Version v1.72.0\n * rc: fix formatting in job/batch\n * test speed: fix formatting of help\n * docs: update sponsor logos\n * build: bump actions/checkout from 5 to 6\n * s3: add multi-part-upload support for If-Match and If-None-Match\n * rc: config/unlock: rename parameter to `configPassword` accept old as well\n * rc: correct names of parameters in job/list output\n * Add Nikolay Kiryanov to contributors\n * rc: add `executeId` to job statuses - fixes #8972\n * build: bump golang.org/x/crypto from 0.43.0 to 0.45.0 to fix CVE-2025-58181\n * s3: fix single file copying behavior with low permission - Fixes #8975\n * docs: onedrive: note how to backup up any user\u0027s data\n * Add Dominik Sander to contributors\n * Add jijamik to contributors\n * box: allow to configure with config file contents\n * http: add basic metadata and provide it via serve\n * ftp: fix transfers from servers that return 250 ok messages\n * b2: allow individual old versions to be deleted with --b2-versions - fixes #1626\n * build: fix tls: failed to verify certificate: x509: negative serial number\n * Add Sean Turner to contributors\n * s3: add support for --upload-header If-Match and If-None-Match\n * fix: comment typos\n * dropbox: fix error moving just created objects - fixes #8881\n * s3: add --s3-use-data-integrity-protections to fix BadDigest error in Alibaba, Tencent\n * rc: make sure fatal errors don\u0027t crash rclone - fixes #8955\n * pacer: factor call stack searching into its own package\n * rc: add osVersion, osKernel and osArch to core/version\n * build: update all dependencies\n * build(deps): bump golangci/golangci-lint-action from 8 to 9\n * webdav: fix out of memory with sharepoint-ntlm when uploading large file\n * testserver: fix owncloud test server startup\n * Add aliaj1 to contributors\n * ulozto: Fix downloads returning HTML error page\n * docs: adjust spectra logic example endpoint name\n * docs: update version introduced to v1.70 in doi docs\n * testserver: fix HDFS server after run.bash adjustments\n * testserver: remind developers about allocating a port\n * testserver: make run.bash variables less likely to collide with scripts\n * testserver: fix seafile servers messing up _connect string\n * testserver: make sure TestWebdavInfiniteScale uses an assigned port\n * testserver: make sure we don\u0027t overwrite the NAME variable set\n * Add n4n5 to contributors\n * Add Alex to contributors\n * Add Copilot to contributors\n * docs: update contributing docs regarding backend documentation\n * rc: add jobs stats\n * docs: fix alignment of some of the icons in the storage system dropdown\n * docs: run markdownlint on _index.md\n * docs: fix markdownlint issues and other styling improvements in backend command docs\n * docs: fix markdownlint issue md046/code-block-style in backend command docs\n * docs: fix missing punctuation in backend commands short description\n * docs: fix markdownlint issues in backend command generated output\n * build: improve backend docs autogenerated marker line\n * backend/compress: add zstd compression\n * sftp: fix zombie SSH processes with --sftp-ssh - Fixes #8929\n * testserver: fix tests failing due to stopped servers\n * docs: add new integration tester site link\n * docs: update the method for running integration tests\n * bisync: fix failing tests\n * Add SublimePeace to contributors\n * b2: fix \"expected a FileSseMode but found: \u0027\u0027\"\n * docs: s3: clarify multipart uploads memory usage\n * test_all: fix detection of running servers\n * accounting: add AccountReadN for use in cluster\n * fs: add NonDefaultRC for discovering options in use\n * fs: move tests into correct files\n * rc: add NewJobFromBytes for reading jobs from non HTTP transactions\n * rc: add job/batch for sending batches of rc commands to run concurrently\n * Add Ted Robertson to contributors\n * Add Joseph Brownlee to contributors\n * Add fries1234 to contributors\n * Add Fawzib Rojas to contributors\n * Add Riaz Arbi to contributors\n * Add Lukas Krejci to contributors\n * Add Adam Dinwoodie to contributors\n * Add dulanting to contributors\n * docs: add AppArmor restrictions to rclone mount\n * check: improved reporting of differences in sizes and contents\n * mega: implement 2FA login\n * docs: change to light code block style to better match overall theme\n * docs: fix various markdownlint issues\n * build: restrict the markdown languages to use for code blocks\n * docs: fix various markdownlint issues\n * docs: fix markdownlint issue md013/line-length\n * docs: change syntax hightlighting for command examples from sh to console\n * docs: Clarify remote naming convention\n * b2: Add Server-Side encryption support\n * Added rclone archive command to create and read archive files\n * accounting: add io.Seeker/io.ReaderAt support to accounting.Account\n * operations: add ReadAt method to ReOpen\n * fstest: add ResetRun to allow the remote to be reset in tests\n * gcs: fix --gcs-storage-class to work with server side copy for objects\n * ulozto: implement the about functionality\n * local: add --skip-specials to ignore special files\n * swift: Report disk usage in segment containers\n * refactor: use strings.Builder to improve performance\n * Archive backend to read archives on cloud storage.\n * vfs: remove unecessary import in tests to fix import cycles\n * Add Lakshmi-Surekha to contributors\n * Add Andrew Gunnerson to contributors\n * Add divinity76 to contributors\n * build: enable support for aix/ppc64\n * rc: fix name of \"queue\" JSON key in docs for vfs/cache\n * cmount: windows: improve error message on missing winfsp\n * docs: add the Provider to the options examples in the backend docs\n * Add Aneesh Agrawal to contributors\n * Add viocha to contributors\n * Add reddaisyy to contributors\n * fs: remove unnecessary Seek call on log file\n * s3: make it easier to add new S3 providers\n * build(deps): bump actions/upload-artifact from 4 to 5\n * build(deps): bump actions/download-artifact from 5 to 6\n * ftp: fix SOCK proxy support - fixes #8892 (#8918)\n * webdav: Add Access-Control-Max-Age header for CORS preflight caching - fixes #5078\n * webdav: use SpaceSepList to parse bearer token command\n * refactor: use strings.Builder to improve performance\n * docs: re-arrange sponsors page\n * docs: add Spectra Logic as a sponsor\n * Add Oleksandr Redko to contributors\n * build: enable all govet checks (except fieldalignment and shadow) and fix issues.\n * march: fix --no-traverse being very slow - fixes #8860\n * Add vastonus to contributors\n * s3: add new FileLu S5 endpoints\n * build: remove obsolete build tag\n * azurefiles: add ListP interface - #4788\n * dropbox: add ListP interface - #4788\n * webdav: add ListP interface - #4788\n * pcloud: add ListP interface - #4788\n * box: add ListP interface - #4788\n * onedrive: add ListP interface - #4788\n * drive: add ListP interface - #4788\n * Add hunshcn to contributors\n * webdav: optimize bearer token fetching with singleflight\n * Changelog updates from Version v1.71.2\n * lib/http: cleanup indentation and other whitespace in http serve template\n * docs: improve formatting of http serve template parameters\n * build: stop markdown linter leaving behind docker containers\n * Add Marco Ferretti to contributors\n * s3: add cubbit as provider\n * s3: add servercore as a provider\n * docs: update sponsors\n * docs: update sponsor images\n * docs: update privacy policy with a section on user data\n * Add Dulani Woods to contributors\n * Add spiffytech to contributors\n * gcs: add region us-east5 - fixes #8863\n * jottacloud: refactor service list from map to slice to get predefined order\n * jottacloud: added support for traditional oauth authentication also for the main service\n * oauthutil: improved debug logs from token refresh\n * backend: add S3 provider for Hetzner object storage #8183\n * jottacloud: improved token refresh handling\n * s3: provider reordering\n * index: add missing providers\n * docs: add missing `\n * s3: add rabata as a provider\n * mega: fix 402 payment required errors - fixes #8758\n * Add Andrew Ruthven to contributors\n * Add Microscotch to contributors\n * Add iTrooz to contributors\n * build: Bump SwiftAIO container to a newer one\n * build: Retry stopping the test server\n * build: Increase attempts to connect to test server\n * swift: If storage_policy isn\u0027t set, use the root containers policy\n * proton: automated 2FA login with OTP secret key\n * serve s3: fix log output to remove the EXTRA messages\n * docs/jottacloud: update description of invalid_grant error according to changes\n * jottacloud: add support for MediaMarkt Cloud as a whitelabel service\n * s3: add FileLu S5 provider\n * docs: fix variants of --user-from-header\n * vfs: fix chunker integration test\n * test_all: give TestZoho: extra time as it has been timing out\n * test_all: give TestCompressDrive: extra time as it has been timing out\n * rclone config string: reduce quoting with Human rendering for strings #8859\n * Add juejinyuxitu to contributors\n * docs/jottacloud: update documentation with new whitelabel services and changed configuration flow\n * jottacloud: abort attempts to run unsupported rclone authorize command\n * jottacloud: minor adjustment of texts in config ui\n * jottacloud: add support for Let\u0027s Go Cloud (from MediaMarkt) as a whitelabel service\n * jottacloud: fix authentication for whitelabel services from Elkjp subsidiaries\n * jottacloud: refactor config handling of whitelabel services to use openid provider configuration\n * jottacloud: remove nil error object from error message\n * jottacloud: fix legacy authentication\n * docs: add remote setup page to main docs dropdown\n * docs: update remote setup page\n * docs: add link from authorize command docs to remote setup docs\n * docs: lowercase internet and web browser instead of Internet browser\n * docs: use the term backend name instead of fs name for authorize command\n * add `rclone config string` for making connection strings #8859\n * config: add more human readable configmap.Simple output\n * serve http: download folders as zip\n * s3: reorder providers to be in alphabetical order\n * refactor: use strings.FieldsFuncSeq to reduce memory allocations\n * accounting: add SetMaxCompletedTransfers method to fix bisync race #8815\n * accounting: add RemoveDoneTransfers method to fix bisync race #8815\n * bisync: fix race when CaptureOutput is used concurrently #8815\n * build: update all dependencies\n * Makefile: remove deprecated go mod usage\n * azurefiles: Fix server side copy not waiting for completion - fixes #8848\n * Changelog updates from Version v1.71.1\n * test_all: fix branch name in test report\n * pacer: fix deadlock with --max-connections\n * Revert \"azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors\"\n * Add Youfu Zhang to contributors\n * Add Matt LaPaglia to contributors\n * smb: optimize smb mount performance by avoiding stat checks during initialization\n * pikpak: fix unnecessary retries by using URL expire parameter - fixes #8601\n * serve http: fix: logging url on start\n * docs: fix typo\n * b2: fix 1TB+ uploads\n * march: fix deadlock when using --fast-list on syncs - fixes #8811\n * build: slices.Contains, added in go1.21\n * build: use strings.CutPrefix introduced in go1.20\n * build: use sequence Split introduced in go1.24\n * build: use \"for i := range n\", added in go1.22\n * build: modernize benchmark usage\n * build: in tests use t.Context, added in go1.24\n * build: replace interface{} by the \u0027any\u0027 type added in go1.18\n * build: use the built-in min or max functions added in go1.21\n * Add russcoss to contributors\n * build: remove x := x made unnecessary by the new semantics of loops in go1.22\n * lib/pool: fix unreliable TestPoolMaxBufferMemory test\n * Update S-Pegg1 email\n * Add Jean-Christophe Cura to contributors\n * pool: fix flaky unreliability test\n * copyurl: reworked code, added concurrency and tests\n * copyurl: Added --url to read urls from csv file - #8127\n * docs: HDFS: erasure coding limitation #8808\n * fstest: fix slice bounds out of range error when using -remotes local\n * local: fix time zones on tests\n * s3: added SpectraLogic as a provider\n * local: fix rmdir \"Access is denied\" on windows - fixes #8363\n * bisync: fix error handling for renamed conflicts\n * docs: pcloud: update root_folder_id instructions\n * operations: fix partial name collisions for non --inplace copies\n * drive: docs: update making your own client ID instructions\n * swift: add ListP interface - #4788\n * memory: add ListP interface - #4788\n * oraceobjectstorage: add ListP interface - #4788\n * B2: add ListP interface - #4788\n * azureblob: add ListP interface - #4788\n * googlecloudstorage: add ListP interface - Fixes #8763\n * build: bump actions/github-script from 7 to 8\n * build: bump actions/setup-go from 5 to 6\n * bisync: fix chunker integration tests\n * bisync: fix koofr integration tests\n * internetarchive: fix server side copy files with spaces\n * lib/rest: add URLPathEscapeAll to URL escape as many chars as possible\n * Add alternate email for dougal to contributors\n * test speed: add command to test a specified remotes speed\n * docs: add link to MEGA S4 from MEGA page\n * Add Robin Rolf to contributors\n * Add anon-pradip to contributors\n * s3: Add Intercolo provider\n * gendocs: refactor and add logging of skipped command docs\n * gendocs: ignore missing rclone_mount.md, rclone_nfsmount.md, rclone_serve_nfs.md on windows\n * bin: add bisync.md generator\n * fstest: refactor to decouple package from implementation\n * gendocs: ignore missing rclone_mount.md on macOS\n * bisync: ignore expected \"nothing to transfer\" differences on tests\n * bisync: fix TestBisyncConcurrent ignoring -case\n * bisync: make number of parallel tests configurable\n * docs: clarify subcommand description in rclone usage\n * docs: fix description of regex syntax of name transform\n * docs: add some more details about supported regex syntax\n * makefile: fix lib/transform docs not getting updated\n * lib/pool: fix flaky test which was causing timeouts\n * Add dougal to contributors\n * vfs: fix SIGHUP killing serve instead of flushing directory caches\n * bisync: use unique stats groups on tests\n * fstest: stop errors in test cleanup changing the global stats\n * Add Motte to contributors\n * Add Claudius Ellsel to contributors\n * build: add local markdown linting to make check\n * lsf: add support for unix and unixnano time formats\n * docs: remove broken links from rc to commands\n * hashsum: changed output format when listing algorithms\n * docs: add example of how to add date as suffix\n * box: fix about after change in API return - fixes #8776\n * Add skbeh to contributors\n * Add Tilman Vogel to contributors\n * docs: fix incorrectly escaped windows path separators\n * build: restore error handling in gendocs\n * combine: propagate SlowHash feature\n * docs/oracleobjectstorage: add introduction before external links and remove broken link\n * docs: fix markdown lint issues in backend docs\n * docs: fix markdown lint issues in command docs\n * docs: update markdown code block json indent size 2\n * mount: do not log successful unmount as an error - fixes #8766\n * Start v1.72.0-DEV development\n\n- Update to version 1.71.2:\n * Version v1.71.2\n * docs: update sponsors\n * docs: update sponsor images\n * docs: update privacy policy with a section on user data\n * gcs: add region us-east5 - fixes #8863\n * index: add missing providers\n * docs: add missing `\n * mega: fix 402 payment required errors - fixes #8758\n * docs: fix variants of --user-from-header\n * docs: add remote setup page to main docs dropdown\n * docs: update remote setup page\n * docs: add link from authorize command docs to remote setup docs\n * docs: lowercase internet and web browser instead of Internet browser\n * docs: use the term backend name instead of fs name for authorize command\n * bisync: fix race when CaptureOutput is used concurrently #8815\n * azurefiles: Fix server side copy not waiting for completion - fixes #8848\n * pikpak: fix unnecessary retries by using URL expire parameter - fixes #8601\n * serve http: fix: logging url on start\n * docs: fix typo\n * b2: fix 1TB+ uploads\n * Start v1.71.2-DEV development\n\n- Update to version 1.71.1:\n * Version v1.71.1\n * pacer: fix deadlock with --max-connections\n * Revert \"azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors\"\n * march: fix deadlock when using --fast-list on syncs - fixes #8811\n * docs: HDFS: erasure coding limitation #8808\n * local: fix rmdir \"Access is denied\" on windows - fixes #8363\n * bisync: fix error handling for renamed conflicts\n * docs: pcloud: update root_folder_id instructions\n * operations: fix partial name collisions for non --inplace copies\n * drive: docs: update making your own client ID instructions\n * internetarchive: fix server side copy files with spaces\n * lib/rest: add URLPathEscapeAll to URL escape as many chars as possible\n * docs: add link to MEGA S4 from MEGA page\n * docs: clarify subcommand description in rclone usage\n * docs: fix description of regex syntax of name transform\n * docs: add some more details about supported regex syntax\n * makefile: fix lib/transform docs not getting updated\n * vfs: fix SIGHUP killing serve instead of flushing directory caches\n * docs: remove broken links from rc to commands\n * docs: add example of how to add date as suffix\n * box: fix about after change in API return - fixes #8776\n * docs: fix incorrectly escaped windows path separators\n * build: restore error handling in gendocs\n * combine: propagate SlowHash feature\n * docs/oracleobjectstorage: add introduction before external links and remove broken link\n * docs: fix markdown lint issues in backend docs\n * docs: fix markdown lint issues in command docs\n * docs: update markdown code block json indent size 2\n * mount: do not log successful unmount as an error - fixes #8766\n * Start v1.71.1-DEV development\n\n- Update to version 1.71.0:\n * Version v1.71.0\n * fs: tls: add --client-pass support for encrypted --client-key files\n * ftp: make TLS config default to global TLS config - Fixes #6671\n * fshttp: return *Transport rather than http.RoundTripper from NewTransport\n * bisync: release from beta\n * bisync: fix markdown formatting issues flagged by linter in docs\n * bisync: fix --no-slow-hash settings on path2\n * Add cui to contributors\n * docs: add code of conduct\n * lib/mmap: convert to using unsafe.Slice to avoid deprecated reflect.SliceHeader\n * build: bump golangci/golangci-lint-action from 6 to 8\n * build: update golangci-lint configuration\n * build: ignore revive lint issue var-naming: avoid meaningless package names\n * build: fix lint issue: should omit type error from declaration\n * Revert \"build: downgrade linter to use go1.24 until it is fixed for go1.25\"\n * build: migrate golangci-lint configuration to v2 format\n * s3: add --s3-use-arn-region flag - fixes #8686\n * Add Binbin Qian to contributors\n * Add Lucas Bremgartner to contributors\n * docs: add tips about outdated certificates\n * FAQ: specify the availability of SSL_CERT_* env vars\n * pikpak: add file name integrity check during upload\n * bisync: skip TestBisyncConcurrent on non-local\n * internetarchive: fix server side copy files with \u0026\n * Revert \"s3: set useAlreadyExists to false for Alibaba OSS\"\n * Add huangnauh to contributors\n * smb: improve multithreaded upload performance using multiple connections\n * bisync: fix data races on tests\n * bisync: remove unused parameters\n * bisync: deglobalize to fix concurrent runs via rc - fixes #8675\n * mount: fix identification of symlinks in directory listings\n * s3: fix Content-Type: aws-chunked causing upload errors with --metadata\n * config: fix problem reading pasted tokens over 4095 bytes\n * config: fix test failure on local machine with a config file\n * log: add log rotation to --log-file - fixes #2259\n * accounting: Fix stats (speed=0 and eta=nil) when starting jobs via rc\n * docs: update overview table for oracle object storage\n * Add praveen-solanki-oracle to contributors\n * oracleobjectstorage: add read only metadata support - Fixes #8705\n * doc: sync doesn\u0027t symlinks in dest without --link - Fixes #8749\n * s3: sort providers in docs\n * s3: add docs for Exaba Object Storage\n * azureblob: fix double accounting for multipart uploads - fixes #8718\n * pool: fix deadlock with --max-buffer-memory\n * azureblob: fix deadlock with --max-connections with InvalidBlockOrBlob errors\n * build: downgrade linter to use go1.24 until it is fixed for go1.25\n * build: update all dependencies\n * build: update to go1.25 and make go1.24 the minimum required version\n * Add Timothy Jacobs to contributors\n * bisync: fix time.Local data race on tests - fixes #8272\n * googlecloudstorage: fix rateLimitExceeded error on bisync tests\n * accounting: populate transfer snapshot with \"what\" value\n * build(deps): bump actions/checkout from 4 to 5\n * build(deps): bump actions/download-artifact from 4 to 5\n * googlecloudstorage: enable bisync integration tests\n * fstest: fix parsing of commas in -remotes\n * azurefiles: fix hash getting erased when modtime is set\n * bisync: disable --sftp-copy-is-hardlink on sftp tests\n * local: fix --copy-links on Windows when listing Junction points\n * operations: fix too many connections open when using --max-memory\n * pool: fix deadlock with --max-memory and multipart transfers\n * pool: unify memory between multipart and asyncreader to use one pool\n * docs: update links to rcloneui\n * docs: add MEGA S4 as a gold sponsor\n * about: fix potential overflow of about in various backends\n * box: fix about: cannot unmarshal number 1.0e+18 into Go struct field\n * oauthutil: fix nil pointer crash when started with expired token\n * rc: listremotes should send an empty array instead of nil\n * config: add error if RCLONE_CONFIG_PASS was supplied but didn\u0027t decrypt config\n * rc: add config/unlock to unlock the config file\n * ftp: allow insecure TLS ciphers - fixes #8701\n * s3: set useAlreadyExists to false for Alibaba OSS\n * docs: update sponsors page\n * fs: allow global variables to be overriden or set on backend creation\n * fs: allow setting of --http_proxy from command line\n * tests: cloudinary: remove test ignore after merging fix from #8707\n * Add Antonin Goude to contributors\n * Add Yu Xin to contributors\n * Add houance to contributors\n * Add Florent Vennetier to contributors\n * Add n4n5 to contributors\n * Add Albin Parou to contributors\n * Add liubingrun to contributors\n * sync: fix testLoggerVsLsf when backend only reads modtime\n * sync: fix testLoggerVsLsf checking wrong fs\n * docs: fix make opengraph tags absolute as not all sites understand relative\n * docs: update contributing guide regarding markdown documentation\n * build: add markdown linting to workflow\n * build: add markdownlint configuration\n * docs: minor format cleanup install.md\n * docs: fix markdownlint issue md049/emphasis-style\n * docs: fix markdownlint issue md036/no-emphasis-as-heading\n * docs: fix markdownlint issue md033/no-inline-html\n * docs: fix markdownlint issue md025/single-title\n * docs: fix markdownlint issue md041/first-line-heading\n * docs: fix markdownlint issue md001/heading-increment\n * docs: fix markdownlint issue md003/heading-style\n * docs: fix markdownlint issue md034/no-bare-urls\n * docs: fix markdownlint issue md010/no-hard-tabs\n * docs: fix markdownlint issue md013/line-length\n * docs: fix markdownlint issue md038/no-space-in-code\n * docs: fix markdownlint issue md040/fenced-code-language\n * docs: fix markdownlint issue md046/code-block-style\n * docs: fix markdownlint issue md037/no-space-in-emphasis\n * docs: fix markdownlint issue md059/descriptive-link-text\n * docs: fix markdownlint issues md007/ul-indent md004/ul-style\n * docs: fix markdownlint issue md012/no-multiple-blanks\n * docs: fix markdownlint issue md058/blanks-around-tables\n * docs: fix markdownlint issue md022/blanks-around-headings\n * docs: fix markdownlint issue md031/blanks-around-fences\n * docs: fix markdownlint issue md032/blanks-around-lists\n * docs: fix markdownlint issue md009/no-trailing-spaces\n * docs: fix markdownlint issue md014/commands-show-output\n * docs: fix markdownlint issues md007/ul-indent md004/ul-style (bin/update-authors.py)\n * docs: fix markdownlint issues md007/ul-indent md004/ul-style (authors.md)\n * docs: add opengraph tags for website social media previews\n * mount: note that bucket based remotes can use directory markers\n * pikpak: add docs for methods to clarify name collision handling and restrictions\n * pikpak: enhance Copy method to handle name collisions and improve error management\n * pikpak: enhance Move for better handling of error and name collision\n * accounting: fix incorrect stats with --transfers=1 - fixes #8670\n * rc: fix `operations/check` ignoring `oneWay` parameter\n * s3: add OVHcloud Object Storage provider\n * docs: rc: fix description of how to read local config\n * build: limit check for edits of autogenerated files to only commits in a pull request\n * build: extend check for edits of autogenerated files to all commits in a pull request\n * smb: refresh Kerberos credentials when ccache file changes\n * s3: fix multipart upload and server side copy when using bucket policy SSE-C\n * backend/s3: Fix memory leak by cloning strings #8683\n * purge: exit with a fatal error if filters are set on `rclone purge`\n * docs: Add Backblaze as a Platinum sponsor\n * Add Sam Pegg to contributors\n * googlephotos: added warning for Google Photos compatability-fixes #8672\n * test: remove flakey TestChunkerChunk50bYandex: test\n * docs: Consolidate entries for Josh Soref in contributors\n * docs: remove dead link to example of writing a plugin\n * filescom: document that hashes need to be enabled - fixes #8674\n * Add Sudipto Baral to contributors\n * docs: fix incorrect json syntax in sample output\n * docs: ignore author email piyushgarg80\n * docs: fix header level for --dump option section\n * docs: use stringArray as parameter type\n * docs: use consistent markdown heading syntax\n * imagekit: remove server side Copy method as it was downloading and uploading\n * imagekit: don\u0027t low level retry uploads\n * imagekit: return correct error when attempting to upload zero length files\n * smb: add --smb-kerberos-ccache option to set kerberos ccache per smb backend\n * test: fix smb kerberos integration tests\n * Changelog updates from Version v1.70.3\n * config: make parsing of duration options consistent\n * docs: cleanup usage\n * docs: break long lines\n * docs: add option value type to header where missing\n * docs: mention that identifiers in option values are case insensitive\n * docs: rewrite dump option examples\n * docs: use markdown inline code format for dump option headers that are real examples\n * docs: change spelling from server side to server-side\n * docs: cleanup header casing\n * docs: rename OSX to macOS\n * docs: fix list and code block issue\n * docs: consistent markdown list format\n * docs: split section with general description of options with that documenting actual main options\n * docs: improve description of option types\n * docs: use space instead of equal sign to separate option and value in headers\n * docs: use comma to separate short and long option format in headers\n * docs: remove use of uncommon parameter types\n * docs: remove use of parameter type FILE\n * docs: remove use of parameter type DIR\n * docs: remove use of parameter type CONFIG_FILE\n * docs: change use of parameter type N and NUMBER to int consistent with flags and cli help\n * docs: change use of parameter type TIME to Duration consistent with flags and cli help\n * docs: change use of parameter type BANDWIDTH_SPEC to BwTimetable consistent with flags and cli help\n * docs: change use of parameter type SIZE to SizeSuffix consistent with flags and cli help\n * docs: cleanup markdown header format\n * docs: explain separated list parameters\n * azureblob: fix server side copy error \"requires exactly one scope\"\n * test: remove and ignore failing integration tests\n * docs: explain the json log format in more detail\n * check: fix difference report (was reporting error counts)\n * serve sftp: add support for more hashes (crc32, sha256, blake3, xxh3, xxh128)\n * serve sftp: extract function refactoring for handling hashsum commands\n * sftp: add support for more hashes (crc32, sha256, blake3, xxh3, xxh128)\n * local: configurable supported hashes\n * hash: add support for BLAKE3, XXH3, XXH128\n * vfs: make integration TestDirEntryModTimeInvalidation test more reliable\n * smb: skip non integration tests when doing integration tests\n * seafile: fix integration test errors by adding dot to encoding\n * linkbox: fix upload error \"user upload file not exist\"\n * build: remove integration tests which are too slow\n * march: fix deadlock when using --no-traverse - fixes #8656\n * pikpak: improve error handling for missing links and unrecoverable 500s\n * pikpak: rewrite upload to bypass AWS S3 manager - fixes #8629\n * test: fix TestSMBKerberos password expiring errors\n * Add Vikas Bhansali to contributors\n * Add Ross Smith II to contributors\n * azureblob,azurefiles: add support for client assertion based authentication\n * webdav: fix setting modtime to that of local object instead of remote\n * build: set default shell to bash in build.yml\n * docs: fix filescom/filelu link mixup\n * Add Davide Bizzarri to contributors\n * fix: b2 versionAt read metadata\n * test: make TestWebdavInfiniteScale startup more reliable\n * test_all: add _connect_delay for slow starting servers\n * docs: update link for filescom\n * test_all: make TestWebdav InfiniteScale integration tests run\n * test_all: make SMB with Kerberos integration tests run properly\n * test_all: allow an env parameter to set environment variables\n * Changelog updates from Version v1.70.2\n * Add Ali Zein Yousuf to contributors\n * Add $@M@RTH_ to contributors\n * docs: update client ID instructions to current Azure AD portal - fixes #8027\n * s3: add Zata provider\n * pacer: fix nil pointer deref in RetryError - fixes #8077\n * docs: Remove Warp as a sponsor\n * docs: add files.com as a Gold sponsor\n * docs: add links to SecureBuild docker image\n * Add curlwget to contributors\n * convmv: fix moving to unicode-equivalent name - fixes #8634\n * transform: add truncate_keep_extension and truncate_bytes\n * convmv: make --dry-run logs less noisy\n * sync: avoid copying dir metadata to itself\n * docs: fix some function names in comments\n * combine: fix directory not found errors with ListP interface - Fixes #8627\n * local: fix --skip-links on Windows when skipping Junction points\n * Add Marvin Rsch to contributors\n * build: bump github.com/go-chi/chi/v5 from 5.2.1 to 5.2.2 to fix GHSA-vrw8-fxc6-2r93\n * copy,copyto,move,moveto: implement logger flags to store result of sync\n * log: fix deadlock when using systemd logging - fixes #8621\n * docs: googlephotos: detail how to make your own client_id - fixes #8622\n * Add necaran to contributors\n * mega: fix tls handshake failure - fixes #8565\n * Changelog updates from Version v1.70.1\n * Add jinjingroad to contributors\n * docs: DOI grammar error\n * docs: lib/transform: cleanup formatting\n * lib/transform: avoid empty charmap entry\n * chore: fix function name\n * convmv: fix spurious \"error running command echo\" on Windows\n * docs: client-credentials is not support by all backends\n * Start v1.71.0-DEV development\n\n- Update to version 1.70.3:\n * Version v1.70.3\n * azureblob: fix server side copy error \"requires exactly one scope\"\n * docs: explain the json log format in more detail\n * check: fix difference report (was reporting error counts)\n * linkbox: fix upload error \"user upload file not exist\"\n * march: fix deadlock when using --no-traverse - fixes #8656\n * pikpak: improve error handling for missing links and unrecoverable 500s\n * webdav: fix setting modtime to that of local object instead of remote\n * fix: b2 versionAt read metadata\n * Start v1.70.3-DEV development\n * docs: fix filescom/filelu link mixup\n * docs: update link for filescom\n\n- Update to version 1.70.2:\n * Version v1.70.2\n * docs: update client ID instructions to current Azure AD portal - fixes #8027\n * mega: fix tls handshake failure - fixes #8565\n * pacer: fix nil pointer deref in RetryError - fixes #8077\n * convmv: fix moving to unicode-equivalent name - fixes #8634\n * convmv: make --dry-run logs less noisy\n * sync: avoid copying dir metadata to itself\n * combine: fix directory not found errors with ListP interface - Fixes #8627\n * local: fix --skip-links on Windows when skipping Junction points\n * build: bump github.com/go-chi/chi/v5 from 5.2.1 to 5.2.2 to fix GHSA-vrw8-fxc6-2r93\n * log: fix deadlock when using systemd logging - fixes #8621\n * docs: googlephotos: detail how to make your own client_id - fixes #8622\n * pikpak: fix uploads fail with \"aws-chunked encoding is not supported\" error\n * Start v1.70.2-DEV development\n * docs: Remove Warp as a sponsor\n * docs: add files.com as a Gold sponsor\n * docs: add links to SecureBuild docker image\n\n- Update to version 1.70.1:\n * Version v1.70.1\n * docs: DOI grammar error\n * docs: lib/transform: cleanup formatting\n * lib/transform: avoid empty charmap entry\n * chore: fix function name\n * convmv: fix spurious \"error running command echo\" on Windows\n * docs: client-credentials is not support by all backends\n * Start v1.70.1-DEV development\n\n- Update to version 1.70.0:\n * Version v1.70.0\n * ftp: add --ftp-http-proxy to connect via HTTP CONNECT proxy\n * pcloud: fix \"Access denied. You do not have permissions to perform this operation\" on large uploads\n * operations: fix TransformFile when can\u0027t server-side copy/move\n * fstest: fix -verbose flag after logging revamp\n * googlecloudstorage: fix directory marker after // changes in #5858\n * s3: fix directory marker after // changes in #5858\n * azureblob: fix directory marker after // changes in #5858\n * tests: ignore some more habitually failing tests\n * googlephotos: fix typo in error message - Fixes #8600\n * s3: MEGA S4 support\n * Add Ser-Bul to contributors\n * chunker: fix double-transform\n * docs: mailru: added note about permissions level choice for the apps password\n * tests: ignore habitually failing tests and backends\n * docs: link to asciinema rather than including the js\n * docs: target=\"_blank\" must have rel=\"noopener\"\n * sync: fix testLoggerVsLsf when dst is local\n * docs: fix FileLu docs\n * build: update all dependencies\n * onedrive: fix crash if no metadata was updated\n * Add kingston125 to contributors\n * Add Flora Thiebaut to contributors\n * Add FileLu cloud storage backend\n * doi: add new doi backend\n * build: fix check_autogenerated_edits.py flagging up files that didn\u0027t exist\n * docs: rc: add more info on how to discover _config and _filter parameters #8584\n * s3: add Exaba provider\n * convmv: add convmv command\n * lib/transform: add transform library and --name-transform flag\n * march: split src and dst\n * Add ahxxm to contributors\n * Add Nathanael Demacon to contributors\n * b2: use file id from listing when not presented in headers - fixes #8113\n * fs: fix goroutine leak and improve stats accounting process\n * march: fix syncing with a duplicate file and directory\n * Add PrathameshLakawade to contributors\n * Add Oleksiy Stashok to contributors\n * docs: fix page_facing_up typo next to Lyve Cloud in README.md\n * backend/s3: require custom endpoint for Lyve Cloud v2 support\n * backend: skip hash calculation when the hashType is None - fixes #8518\n * azureblob: fix multipart server side copies of 0 sized files\n * Add Jeremy Daer to contributors\n * Add wbulot to contributors\n * s3: add Pure Storage FlashBlade provider support (#8575)\n * backend/gofile: update to use new direct upload endpoint\n * log: add --windows-event-log-level to support Windows Event Log\n * fs: Remove github.com/sirupsen/logrus and replace with log/slog\n * Add fhuber to contributors\n * cmd serve s3: fix ListObjectsV2 response\n * Changelog updates from Version v1.69.3\n * onedrive: re-add --onedrive-upload-cutoff flag\n * onedrive: fix \"The upload session was not found\" errors\n * Add Germn Casares to contributors\n * Add Jeff Geerling to contributors\n * googlephotos: update read only and read write scopes to meet Google\u0027s requirements.\n * build: update github.com/ebitengine/purego to v0.8.3 to fix mac_amd64 build\n * docs: add hint about config touch and config file not found\n * docs: add FAQ for dismissing \u0027rclone.conf not found\u0027\n * docs: document how to keep an out of tree backend\n * Add Clment Wehrung to contributors\n * iclouddrive: fix panic and files potentially downloaded twice\n * docs: move --max-connections documentation to the correct place\n * Add Ben Boeckel to contributors\n * Add Tho Neyugn to contributors\n * docs: fix typo in s3/storj docs\n * serve s3: remove redundant handler initialization\n * Changelog updates from Version 1.69.2\n * sftp: add --sftp-http-proxy to connect via HTTP CONNECT proxy\n * Add Jugal Kishore to contributors\n * docs: correct SSL docs anchor link from #ssl-tls to #tls-ssl\n * drive: metadata: fix error when setting copy-requires-writer-permission on a folder\n * docs: Update contributors\n * build: bump golang.org/x/net from 0.36.0 to 0.38.0\n * Update README.md\n * docs: fix typos via codespell\n * webdav: add an ownCloud Infinite Scale vendor that enables tus chunked upload support\n * onedrive: fix metadata ordering in permissions\n * Add Ben Alex to contributors\n * Add simwai to contributors\n * iclouddrive: fix so created files are writable\n * cmd/authorize: show required arguments in help text\n * cloudinary: var naming convention - #8416\n * cloudinary: automatically add/remove known media files extensions #8416\n * Add Markus Gerstel to contributors\n * Add Enduriel to contributors\n * Add huanghaojun to contributors\n * Add simonmcnair to contributors\n * Add Samantha Bowen to contributors\n * s3: documentation regression - fixes #8438\n * hash: add SHA512 support for file hashes\n * vfs: fix inefficient directory caching when directory reads are slow\n * docs: update fuse version in docker docs\n * fs/config: Read configuration passwords from stdin even when terminated with EOF - fixes #8480\n * cmd/gitannex: Reject unknown layout modes in INITREMOTE\n * cmd/gitannex: Add configparse.go and refactor\n * cmd/gitannex: Permit remotes with options\n * serve ftp: add serve rc interface\n * serve sftp: add serve rc interface\n * serve restic: add serve rc interface\n * serve s3: add serve rc interface\n * serve dlna: add serve rc interface\n * serve webdav: add serve rc interface - fixes #4505\n * serve http: add serve rc interface\n * serve nfs: add serve rc interface\n * serve: Add rc control for serve commands #4505\n * configstruct: add SetAny to parse config from the rc\n * rc: In options/info make FieldName contain a \".\" if it should be nested\n * serve restic: convert options to new style\n * serve s3: convert options to new style\n * serve http: convert options to new style\n * serve webdav: convert options to new style\n * auth proxy: convert options to new style\n * auth proxy: add VFS options parameter for use for default VFS\n * serve: make the servers self registering\n * lib/http: fix race between Serve() and Shutdown()\n * lib/http: add Addr() method to return the first configured server address\n * Add Danny Garside to contributors\n * docs: fix minor typo in box docs\n * sync: implement --list-cutoff to allow on disk sorting for reduced memory use\n * march: Implement callback based syncing\n * list: add ListDirSortedFn for callback oriented directory listing\n * list: Implement Sorter to sort directory entries\n * cache: mark ListP as not supported yet\n * hasher: implement ListP interface\n * compress: implement ListP interface\n * chunker: mark ListP as not supported yet\n * union: mark ListP as not supported yet\n * crypt: implement ListP interface\n * combine: implement ListP interface\n * s3: Implement paged listing interface ListP\n * list: add WithListP helper to implement List for ListP backends\n * walk: move NewListRHelper into list.Helper to avoid circular dependency\n * fs: define ListP interface for paged listing #4788\n * accounting: Add listed stat for number of directory entries listed\n * walk: factor Listing helpers into their own file and add tests\n * serve nfs: make metadata files have special file handles\n * serve nfs: change the format of --nfs-cache-type symlink file handles\n * vfs: add --vfs-metadata-extension to expose metadata sidecar files\n * docs: Add rcloneui.com as Silver Sponsor\n * Add Klaas Freitag to contributors\n * Add eccoisle to contributors\n * Add Fernando Fernndez to contributors\n * Add alingse to contributors\n * Add Jrn Friedrich Dreyer to contributors\n * docs: replace option --auto-filename-header with --header-filename\n * build: update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to fix CVE-2025-30204\n * docs/googlephotos: fix typos\n * build: bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2\n * operations: fix call fmt.Errorf with wrong err\n * webdav: retry propfind on 425 status\n * Add --max-connections to control maximum backend concurrency\n * rc: fix debug/* commands not being available over unix sockets\n * cmd/gitannex: Prevent tests from hanging when assertion fails\n * cmd/gitannex: Add explicit timeout for mock stdout reads in tests\n * http: correct root if definitely pointing to a file - fixes #8428\n * pool: add --max-buffer-memory to limit total buffer memory usage\n * filter: Add `--hash-filter` to deterministically select a subset of files\n * build: update golang.org/x/net to 0.36.0. to fix CVE-2025-22869\n * rc: add add short parameter to core/stats to not return transferring and checking\n * fs: fix corruption of SizeSuffix with \"B\" suffix in config (eg --min-size)\n * filters: show --min-size and --max-size in --dump filters\n * build: check docs for edits of autogenerated sections\n * Add jack to contributors\n * docs: fix incorrect mentions of vfs-cache-min-free-size\n * fs/object: fix memory object out of bounds Seek\n * serve nfs: fix unlikely crash\n * docs: update minimum OS requirements for go1.24\n * cmd/gitannex: Tweak parsing of \"rcloneremotename\" config\n * cmd/gitannex: Drop var rebindings now that we have go1.23\n * docs: add note for using rclone cat for slicing out a byte range from a file\n * rcserver: improve content-type check\n * build: modernize Go usage\n * build: update all dependencies and fix deprecations\n * build: update golang.org/x/crypto to v0.35.0 to fix CVE-2025-22869\n * build: make go1.23 the minimum go version\n * cmd/gitannex: Add to integration tests\n * cmd/gitannex: Simplify verbose failures in tests\n * cmd/gitannex: Port unit tests to fstest\n * vfs: fix integration test failures\n * azureblob: fix errors not being retried when doing single part copy\n * azureblob: handle retry error codes more carefully\n * touch: make touch obey --transfers\n * Add luzpaz to contributors\n * Add Dave Vasilevsky to contributors\n * docs: fix various typos Found via\n * dropbox: Retry link without expiry\n * Dropbox: Support Dropbox Paper\n * chore: update contributor email\n * docs: correct stable release workflow\n * Add Lorenz Brun to contributors\n * Add Michael Kebe to contributors\n * vfs: fix directory cache serving stale data\n * build: fix docker plugin build - fixes #8394\n * docs: improved sftp limitations\n * Changelog updates from Version v1.69.1\n * docs: add FileLu as sponsors and tidy sponsor logos\n * accounting: fix percentDiff calculation -- fixes #8345\n * vfs: fix the cache failing to upload symlinks when --links was specified\n * Add jbagwell-akamai to contributors\n * Add ll3006 to contributors\n * doc: add note on concurrency of rclone purge\n * s3: add latest Linode Object Storage endpoints\n * cmd: fix crash if rclone is invoked without any arguments - Fixes #8378\n * build: disable docker builds on PRs \u0026 add missing dockerfile changes\n * sync: copy dir modtimes even when copyEmptySrcDirs is false - fixes #8317\n * sync: add tests to check dir modtimes are kept when syncing\n * fix golangci-lint errors\n * bisync: fix false positive on integration tests\n * s3: split the GCS quirks into -s3-use-x-id and -s3-sign-accept-encoding #8373\n * Add Joel K Biju to contributors\n * stats: fix the speed not getting updated after a pause in the processing\n * opendrive: added --opendrive-access flag to handle permissions\n * bisync: fix listings missing concurrent modifications - fixes #8359\n * Added parallel docker builds and caching for go build in the container\n * smb: improve connection pooling efficiency\n * lib/oauthutil: fix redirect URL mismatch errors - fixes #8351\n * b2: fix \"fatal error: concurrent map writes\" - fixes #8355\n * Add Alexander Minbaev to contributors\n * Add Zachary Vorhies to contributors\n * Add Jess to contributors\n * s3: add IBM IAM signer - fixes #7617\n * serve nfs: update docs to note Windows is not supported - fixes #8352\n * cmd/config(update remote): introduce --no-output option\n * s3: add DigitalOcean regions SFO2, LON1, TOR1, BLR1\n * sync: fix cpu spinning when empty directory finding with leading slashes\n * s3: fix handling of objects with // in #5858\n * azureblob: fix handling of objects with // in #5858\n * fstest: add integration tests objects with // on bucket based backends #5858\n * fs/list: tweak directory listing assertions after allowing // names\n * lib/bucket: fix tidying of // in object keys #5858\n * lib/bucket: add IsAllSlashes function\n * azureblob: remove uncommitted blocks on InvalidBlobOrBlock error\n * azureblob: implement multipart server side copy\n * azureblob: speed up server side copies for small files #8249\n * azureblob: cleanup uncommitted blocks on upload errors\n * azureblob: factor readMetaData into readMetaDataAlways returning blob properties\n * Add b-wimmer to contributors\n * azurefiles: add --azurefiles-use-az and --azurefiles-disable-instance-discovery\n * onedrive: mark German (de) region as deprecated\n * Add Trevor Starick to contributors\n * Add hiddenmarten to contributors\n * Add Corentin Barreau to contributors\n * Add Bruno Fernandes to contributors\n * Add Moises Lima to contributors\n * Add izouxv to contributors\n * Add Robin Schneider to contributors\n * Add Tim White to contributors\n * Add Christoph Berger to contributors\n * azureblob: add support for `x-ms-tags` header\n * rc: disable the metrics server when running `rclone rc`\n * internetarchive: add --internetarchive-metadata=\"key=value\" for setting item metadata\n * lib/batcher: Deprecate unused option: batch_commit_timeout\n * s3: Added new storage class to magalu provider\n * http servers: add --user-from-header to use for authentication\n * b2: add SkipDestructive handling to backend commands - fixes #8194\n * vfs: close the change notify channel on Shutdown\n * Docker image: Add label org.opencontainers.image.source for release notes in Renovate dependency updates\n * docs: add OneDrive Impersonate instructions - fixes #5610\n * docs: explain the stringArray flag parameter descriptor\n * iclouddrive: add notes on ADP and Missing PCS cookies - fixes #8310\n * docs: fix typos found by codespell in docs and code comments\n * fs: fix confusing \"didn\u0027t find section in config file\" error\n * vfs: fix race detected by race detector\n * Add Jonathan Giannuzzi to contributors\n * Add Spencer McCullough to contributors\n * Add Matt Ickstadt to contributors\n * smb: add support for kerberos authentication\n * drive: added `backend moveid` command\n * docs: fix reference to serves3 setting disable_multipart_uploads which was renamed\n * docs: fix link to Rclone Serve S3\n * serve s3: fix list objects encoding-type\n * build: update gopkg.in/yaml.v2 to v3\n * build: update all dependencies\n * bisync: fix go vet problems with go1.24\n * build: update to go1.24rc1 and make go1.22 the minimum required version\n * version: add --deps flag to show dependencies and other build info\n * doc: make man page well formed for whatis - fixes #7430\n * Start v1.70.0-DEV development\n\n- Install completion files in the right place.\n\n- Update to version 1.69.3:\n * build: update github.com/ebitengine/purego to work around bug in go1.24.3\n * build: reapply update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to fix CVE-2025-30204\n\n- Update to version 1.69.2:\n - Bug fixes\n - accounting: Fix percentDiff calculation -- (Anagh Kumar\n Baranwal)\n - build\n - Update github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 to\n fix CVE-2025-30204 (dependabot[bot])\n - Update github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 to\n fix CVE-2025-30204 (dependabot[bot])\n - Update golang.org/x/crypto to v0.35.0 to fix CVE-2025-22869\n (Nick Craig-Wood)\n - Update golang.org/x/net from 0.36.0 to 0.38.0 to fix\n CVE-2025-22870 (dependabot[bot])\n - Update golang.org/x/net to 0.36.0. to fix CVE-2025-22869\n (dependabot[bot])\n - Stop building with go \u003c go1.23 as security updates forbade\n it (Nick Craig-Wood)\n - Fix docker plugin build (Anagh Kumar Baranwal)\n - cmd: Fix crash if rclone is invoked without any arguments\n (Janne Hellsten)\n - config: Read configuration passwords from stdin even when\n terminated with EOF (Samantha Bowen)\n - doc fixes (Andrew Kreimer, Danny Garside, eccoisle, Ed\n Craig-Wood, emyarod, jack, Jugal Kishore, Markus Gerstel,\n Michael Kebe, Nick Craig-Wood, simonmcnair, simwai, Zachary\n Vorhies)\n - fs: Fix corruption of SizeSuffix with \"B\" suffix in config\n (eg --min-size) (Nick Craig-Wood)\n - lib/http: Fix race between Serve() and Shutdown() (Nick\n Craig-Wood)\n - object: Fix memory object out of bounds Seek (Nick\n Craig-Wood)\n - operations: Fix call fmt.Errorf with wrong err (alingse)\n - rc\n - Disable the metrics server when running rclone rc\n (hiddenmarten)\n - Fix debug/* commands not being available over unix sockets\n (Nick Craig-Wood)\n - serve nfs: Fix unlikely crash (Nick Craig-Wood)\n - stats: Fix the speed not getting updated after a pause in the\n processing (Anagh Kumar Baranwal)\n - sync\n - Fix cpu spinning when empty directory finding with leading\n slashes (Nick Craig-Wood)\n - Copy dir modtimes even when copyEmptySrcDirs is false\n (ll3006)\n - vfs\n - Fix directory cache serving stale data (Lorenz Brun)\n - Fix inefficient directory caching when directory reads are\n slow (huanghaojun)\n - Fix integration test failures (Nick Craig-Wood)\n - Drive\n - Metadata: fix error when setting\n copy-requires-writer-permission on a folder (Nick Craig-Wood)\n - Dropbox\n - Retry link without expiry (Dave Vasilevsky)\n - HTTP\n - Correct root if definitely pointing to a file (nielash)\n - Iclouddrive\n - Fix so created files are writable (Ben Alex)\n - Onedrive\n - Fix metadata ordering in permissions (Nick Craig-Wood)\n\n- Update to version 1.69.1:\n * Version v1.69.1\n * build: disable docker builds on PRs \u0026 add missing dockerfile changes\n * Added parallel docker builds and caching for go build in the container\n * docs: add FileLu as sponsors and tidy sponsor logos\n * vfs: fix the cache failing to upload symlinks when --links was specified\n * doc: add note on concurrency of rclone purge\n * s3: add latest Linode Object Storage endpoints\n * fix golangci-lint errors\n * bisync: fix listings missing concurrent modifications - fixes #8359\n * lib/oauthutil: fix redirect URL mismatch errors - fixes #8351\n * b2: fix \"fatal error: concurrent map writes\" - fixes #8355\n * serve nfs: update docs to note Windows is not supported - fixes #8352\n * s3: add DigitalOcean regions SFO2, LON1, TOR1, BLR1\n * onedrive: mark German (de) region as deprecated\n * s3: Added new storage class to magalu provider\n * vfs: close the change notify channel on Shutdown\n * docs: add OneDrive Impersonate instructions - fixes #5610\n * docs: explain the stringArray flag parameter descriptor\n * iclouddrive: add notes on ADP and Missing PCS cookies - fixes #8310\n * docs: fix typos found by codespell in docs and code comments\n * fs: fix confusing \"didn\u0027t find section in config file\" error\n * vfs: fix race detected by race detector\n * docs: fix reference to serves3 setting disable_multipart_uploads which was renamed\n * docs: fix link to Rclone Serve S3\n * serve s3: fix list objects encoding-type\n * doc: make man page well formed for whatis - fixes #7430\n * Start v1.69.1-DEV development\n\n- Update to version 1.69.0:\n https://rclone.org/changelog/#v1-69-0-2025-01-12\n\n Rclone is using golang.org/x/net but was not affected to\n CVE-2024-45337 and CVE-2024-45338.\n\n * Version v1.69.0\n * test_all: disable docker plugin tests\n * docs: fix typo\n * accounting: fix race stopping/starting the stats counter\n * docs: add github.com/icholy/gomajor to RELEASE for updating major versions\n * ftp: fix ls commands returning empty on \"Microsoft FTP Service\" servers\n * s3: add docs on data integrity\n * webdav: make --webdav-auth-redirect to fix 401 unauthorized on redirect\n * rest: make auth preserving redirects an option\n * box: fix panic when decoding corrupted PEM from JWT file\n * size: make output compatible with -P\n * vfs: add remote name to vfs cache log messages - fixes #7952\n * dropbox: fix return status when full to be fatal error\n * rc: add relative to vfs/queue-set-expiry\n * vfs: fix open files disappearing from directory listings\n * docker serve: parse all remaining mount and VFS options\n * smb: fix panic if stat fails\n * googlephotos: fix nil pointer crash on upload - fixes #8233\n * iclouddrive: tweak docs\n * serve dlna: sort the directory entries by directories first then alphabetically by name\n * serve nfs: fix missing inode numbers which was messing up ls -laR\n * serve nfs: implement --nfs-cache-type symlink\n * azureblob,oracleobjectstorage,s3: quit multipart uploads if the context is cancelled\n * http: fix incorrect URLs with initial slash\n * build: update `github.com/shirou/gopsutil` to v4\n * Replace Windows-specific NewLazyDLL with NewLazySystemDLL\n * lib/oauthutil: don\u0027t require token to exist for client credentials flow\n * fs/operations: make log messages consistent for mkdir/rmdir at INFO level\n * Add Francesco Frassinelli to contributors\n * smb: Add support for Kerberos authentication.\n * docs: smb: link to CloudSoda/go-smb2 fork\n * cloudinary: add cloudinary backend - fixes #7989\n * operations: fix eventual consistency in TestParseSumFile test\n * Add TAKEI Yuya to contributors\n * docs: Remove Backblaze as a Platinum sponsor\n * docs: add RcloneView as silver sponsor\n * serve docker: fix incorrect GID assignment\n * serve s3: fix Last-Modified timestamp\n * Add ToM to contributors\n * Add Henry Lee to contributors\n * Add Louis Laureys to contributors\n * docs: filtering: mention feeding --files-from from standard input\n * docs: filtering: fix --include-from copypaste error\n * s3: rename glacier storage class to flexible retrieval\n * b2: add daysFromStartingToCancelingUnfinishedLargeFiles to backend lifecycle command\n * build: update golang.org/x/net to v0.33.0 to fix CVE-2024-45338\n * azurefiles: fix missing x-ms-file-request-intent header\n * Add Thomas ten Cate to contributors\n * docs: Document --url and --unix-socket on the rc page\n * docs: link to the outstanding vfs symlinks issue\n * Add Yxxx to contributors\n * Add hayden.pan to contributors\n * docs: update pcloud doc to avoid puzzling token error when use remote rclone authorize\n * pikpak: add option to use original file links - fixes #8246\n * rc/job: use mutex for adding listeners thread safety\n * docs: mention in serve tls options when value is path to file - fixes #8232\n * build: update all dependencies\n * accounting: fix debug printing when debug wasn\u0027t set\n * Add Filipe Azevedo to contributors\n * fs: make --links flag global and add new --local-links and --vfs-links flag\n * vfs: add docs for -l/--links flag\n * nfsmount,serve nfs: introduce symlink support #2975\n * mount2: introduce symlink support #2975\n * mount: introduce symlink support #2975\n * cmount: introduce symlink support #2975\n * vfstest: make VFS test suite support symlinks\n * vfs: add symlink support to VFS\n * vfs: add ELOOP error\n * vfs: Add link permissions\n * vfs: Add VFS --links command line switch\n * vfs: add vfs.WriteFile to match os.WriteFile\n * fs: Move link suffix to fs\n * cmount: fix problems noticed by linter\n * mount2: Fix missing . and .. entries\n * sftp: fix nil check when using auth proxy\n * Add Martin Hassack to contributors\n * serve sftp: resolve CVE-2024-45337\n * googlecloudstorage: typo fix in docs\n * onedrive: add support for OAuth client credential flow - fixes #6197\n * lib/oauthutil: add support for OAuth client credential flow\n * lib/oauthutil: return error messages from the oauth process better\n * bin/test_backend_sizes.py fix compile flags and s3 reporting\n * test makefiles: add --flat flag for making directories with many entries\n * Add divinity76 to contributors\n * Add Ilias Ozgur Can Leonard to contributors\n * Add remygrandin to contributors\n * Add Michael R. Davis to contributors\n * cmd/mountlib: better snap mount error message\n * vfs: with --vfs-used-is-size value is calculated and then thrown away - fixes #8220\n * serve sftp: fix loading of authorized keys file with comment on last line - fixes #8227\n * oracleobjectstorage: make specifying compartmentid optional\n * plcoud: fix failing large file uploads - fixes #8147\n * docs: add docker volume plugin troubleshooting steps\n * docs: fix missing `state` parameter in `/auth` link in instructions\n * build: fix build failure on ubuntu\n * docs: upgrade fontawesome to v6\n * s3: fix multitenant multipart uploads with CEPH\n * Add David Seifert to contributors\n * Add vintagefuture to contributors\n * use better docs\n * googlecloudstorage: update docs on service account access tokens\n * test_all: POSIX head/tail invocations\n * icloud: Added note about app specific password not working\n * s3: fix download of compressed files from Cloudflare R2 - fixes #8137\n * s3: fix testing tiers which don\u0027t exist except on AWS\n * Changelog updates from Version v1.68.2\n * local: fix permission and ownership on symlinks with --links and --metadata\n * Revert \"Merge commit from fork\"\n * Add Dimitrios Slamaris to contributors\n * Merge commit from fork\n * onedrive: fix integration tests after precision change\n * operations: fix TestRemoveExisting on crypt backends by shortening the file name\n * bisync: fix output capture restoring the wrong output for logrus\n * serve sftp: update github.com/pkg/sftp to v1.13.7 and fix deadlock in tests\n * build: fix comments after golangci-lint upgrade\n * build: update all dependencies\n * build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1\n * pikpak: fix fatal crash on startup with token that can\u0027t be refreshed\n * yandex: fix server side copying over existing object\n * sugarsync: fix server side copying over existing object\n * putio: fix server side copying over existing object\n * onedrive: fix server side copying over existing object\n * dropbox: fix server side copying over existing object\n * operations: add RemoveExisting to safely remove an existing file\n * gofile: fix server side copying over existing object\n * test_all: try to fix mailru rate limits in integration tests\n * Add shenpengfeng to contributors\n * Add Dimitar Ivanov to contributors\n * docs: fix function name in comment\n * sftp: allow inline ssh public certificate for sftp\n * serve s3: fix excess locking which was making serve s3 single threaded\n * lib/oauthutil: allow the browser opening function to be overridden\n * Add Moises Lima to contributors\n * lib/http: disable automatic authentication skipping for unix sockets\n * onedrive: fix Retry-After handling to look at 503 errors also\n * s3: Storj provider: fix server-side copy of files bigger than 5GB\n * s3: add Selectel as a provider\n * fs: fix Don\u0027t know how to set key \"chunkSize\" on upload errors in tests\n * drive: implement rclone backend rescue to rescue orphaned files\n * Add tgfisher to contributors\n * Add Diego Monti to contributors\n * Add Randy Bush to contributors\n * Add Alexandre Hamez to contributors\n * Add Simon Bos to contributors\n * docs: mention that inline comments are not supported in a filter-file\n * s3: add Wasabi eu-south-1 region\n * docs: fix forward refs in step 9 of using your own client id\n * docs: fix Scaleway Glacier website URL\n * dlna: fix loggingResponseWriter disregarding log level\n * build: remove required property on boolean inputs\n * build: use inputs context in github workflow\n * s3: fix crash when using --s3-download-url after migration to SDKv2\n * docs: update overview to show pcloud can set modtime\n * Add Andr Tran to contributors\n * Add Matthias Gatto to contributors\n * Add lostb1t to contributors\n * Add Noam Ross to contributors\n * Add Benjamin Legrand to contributors\n * s3: add Outscale provider\n * Add ICloud Drive backend\n * drive: add support for markdown format\n * accounting: fix global error acounting\n * onedrive: fix time precision for OneDrive personal\n * Add RcloneView as a sponsor\n * Add Leandro Piccilli to contributors\n * cache: skip bisync tests\n * bisync: allow blank hashes on tests\n * box: fix server-side copying a file over existing dst - fixes #3511\n * sync: add tests for copying/moving a file over itself\n * fs/cache: fix parent not getting pinned when remote is a file\n * gcs: add access token auth with --gcs-access-token\n * accounting: write the current bwlimit to the log on SIGUSR2\n * accounting: fix wrong message on SIGUSR2 to enable/disable bwlimit\n * gphotos: implment --gphotos-proxy to allow download of full resolution media\n * googlephotos: remove noisy debugging statements\n * docs: add note to CONTRIBUTING that the overview needs editing in 2 places\n * test_all: add ignoretests parameter for skipping certain tests\n * build: replace \"golang.org/x/exp/slices\" with \"slices\" now go1.21 is required\n * Changelog updates from Version v1.68.1\n * Makefile: Fail when doc recipes create dir named \u0027$HOME\u0027\n * Makefile: Prevent `doc` recipe from creating dir named \u0027$HOME\u0027\n * pikpak: fix cid/gcid calculations for fs.OverrideRemote\n * bisync: change exit code from 2 to 7 for critically aborted run\n * cmd: change exit code from 1 to 2 for syntax and usage errors\n * local: fix --copy-links on macOS when cloning\n * azureblob: add --azureblob-use-az to force the use of the Azure CLI for auth\n * azureblob: add --azureblob-disable-instance-discovery\n * s3: add initial --s3-directory-bucket to support AWS Directory Buckets\n * Add Lawrence Murray to contributors\n * backend/protondrive: improve performance of Proton Drive backend\n * ftp: implement --ftp-no-check-upload to allow upload to write only dirs\n * docs: document that fusermount3 may be needed when mounting/unmounting\n * Add rishi.sridhar to contributors\n * Add quiescens to contributors\n * docs/zoho: update options\n * zoho: make upload cutoff configurable\n * zoho: add support for private spaces\n * zoho: try to handle rate limits a bit better\n * zoho: print clear error message when missing oauth scope\n * zoho: switch to large file upload API for larger files, fix missing URL encoding of filenames for the upload API\n * zoho: use download server to accelerate downloads\n * opendrive: add about support to backend\n * pikpak: fix login issue where token retrieval fails\n * webdav: nextcloud: implement backoff and retry for 423 LOCKED errors\n * s3: fix rclone ignoring static credentials when env_auth=true\n * fs: fix setting stringArray config values from environment variables\n * rc: fix default value of --metrics-addr\n * fs: fix --dump filters not always appearing\n * docs: correct notes on docker manual build\n * Add ttionya to contributors\n * build: fix docker release build - fixes #8062\n * docs: add section for improving performance for s3\n * onedrive: fix spurious \"Couldn\u0027t decode error response: EOF\" DEBUG\n * Add Divyam to contributors\n * serve docker: add missing vfs-read-chunk-streams option in docker volume driver\n * Start v1.69.0-DEV development\n\n- Update to version 1.68.2:\n * Version v1.68.2\n * s3: fix multitenant multipart uploads with CEPH\n * local: fix permission and ownership on symlinks with --links and --metadata\n CVE-2024-52522 boo#1233422\n * bisync: fix output capture restoring the wrong output for logrus\n * build: fix comments after golangci-lint upgrade\n * build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1\n * pikpak: fix fatal crash on startup with token that can\u0027t be refreshed\n * serve s3: fix excess locking which was making serve s3 single threaded\n * onedrive: fix Retry-After handling to look at 503 errors also\n * s3: Storj provider: fix server-side copy of files bigger than 5GB\n * docs: mention that inline comments are not supported in a filter-file\n * docs: fix forward refs in step 9 of using your own client id\n * docs: fix Scaleway Glacier website URL\n * dlna: fix loggingResponseWriter disregarding log level\n * s3: fix crash when using --s3-download-url after migration to SDKv2\n * docs: update overview to show pcloud can set modtime\n * Add RcloneView as a sponsor\n * accounting: fix wrong message on SIGUSR2 to enable/disable bwlimit\n * pikpak: fix cid/gcid calculations for fs.OverrideRemote\n * local: fix --copy-links on macOS when cloning\n * Start v1.68.2-DEV development\n\n- CVE-2024-51744: updated jwt to v4.5.1 (bsc#1232964).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-packagehub-213",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20620-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1232964",
"url": "https://bugzilla.suse.com/1232964"
},
{
"category": "self",
"summary": "SUSE Bug 1233422",
"url": "https://bugzilla.suse.com/1233422"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45338 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-51744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-51744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52522 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52522/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-30204 page",
"url": "https://www.suse.com/security/cve/CVE-2025-30204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68121 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-1229 page",
"url": "https://www.suse.com/security/cve/CVE-2026-1229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27141 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41176 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41179 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41179/"
}
],
"title": "Security update for rclone",
"tracking": {
"current_release_date": "2026-04-23T16:22:47Z",
"generator": {
"date": "2026-04-23T16:22:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20620-1",
"initial_release_date": "2026-04-23T16:22:47Z",
"revision_history": [
{
"date": "2026-04-23T16:22:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rclone-1.73.5-bp160.1.1.aarch64",
"product": {
"name": "rclone-1.73.5-bp160.1.1.aarch64",
"product_id": "rclone-1.73.5-bp160.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"product": {
"name": "rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"product_id": "rclone-bash-completion-1.73.5-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "rclone-zsh-completion-1.73.5-bp160.1.1.noarch",
"product": {
"name": "rclone-zsh-completion-1.73.5-bp160.1.1.noarch",
"product_id": "rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rclone-1.73.5-bp160.1.1.ppc64le",
"product": {
"name": "rclone-1.73.5-bp160.1.1.ppc64le",
"product_id": "rclone-1.73.5-bp160.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rclone-1.73.5-bp160.1.1.x86_64",
"product": {
"name": "rclone-1.73.5-bp160.1.1.x86_64",
"product_id": "rclone-1.73.5-bp160.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rclone-1.73.5-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64"
},
"product_reference": "rclone-1.73.5-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rclone-1.73.5-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le"
},
"product_reference": "rclone-1.73.5-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rclone-1.73.5-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64"
},
"product_reference": "rclone-1.73.5-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rclone-bash-completion-1.73.5-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch"
},
"product_reference": "rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rclone-zsh-completion-1.73.5-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
},
"product_reference": "rclone-zsh-completion-1.73.5-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
},
{
"cve": "CVE-2024-45338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45338"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45338",
"url": "https://www.suse.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "SUSE Bug 1234794 for CVE-2024-45338",
"url": "https://bugzilla.suse.com/1234794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-45338"
},
{
"cve": "CVE-2024-51744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-51744"
}
],
"notes": [
{
"category": "general",
"text": "golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in `ParseWithClaims` can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by `ParseWithClaims` return both error codes. If users only check for the `jwt.ErrTokenExpired ` using `error.Is`, they will ignore the embedded `jwt.ErrTokenSignatureInvalid` and thus potentially accept invalid tokens. A fix has been back-ported with the error handling logic from the `v5` branch to the `v4` branch. In this logic, the `ParseWithClaims` function will immediately return in \"dangerous\" situations (e.g., an invalid signature), limiting the combined errors only to situations where the signature is valid, but further validation failed (e.g., if the signature is valid, but is expired AND has the wrong audience). This fix is part of the 4.5.1 release. We are aware that this changes the behaviour of an established function and is not 100 % backwards compatible, so updating to 4.5.1 might break your code. In case you cannot update to 4.5.0, please make sure that you are properly checking for all errors (\"dangerous\" ones first), so that you are not running in the case detailed above.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-51744",
"url": "https://www.suse.com/security/cve/CVE-2024-51744"
},
{
"category": "external",
"summary": "SUSE Bug 1232936 for CVE-2024-51744",
"url": "https://bugzilla.suse.com/1232936"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-51744"
},
{
"cve": "CVE-2024-52522",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52522"
}
],
"notes": [
{
"category": "general",
"text": "Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Insecure handling of symlinks with --links and --metadata in rclone while copying to local disk allows unprivileged users to indirectly modify ownership and permissions on symlink target files when a superuser or privileged process performs a copy. This vulnerability could enable privilege escalation and unauthorized access to critical system files, compromising system integrity, confidentiality, and availability. This vulnerability is fixed in 1.68.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52522",
"url": "https://www.suse.com/security/cve/CVE-2024-52522"
},
{
"category": "external",
"summary": "SUSE Bug 1233422 for CVE-2024-52522",
"url": "https://bugzilla.suse.com/1233422"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2024-52522"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-30204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-30204"
}
],
"notes": [
{
"category": "general",
"text": "golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits (via a call to strings.Split) its argument (which is untrusted data) on periods. As a result, in the face of a malicious request whose Authorization header consists of Bearer followed by many period characters, a call to that function incurs allocations to the tune of O(n) bytes (where n stands for the length of the function\u0027s argument), with a constant factor of about 16. This issue is fixed in 5.2.2 and 4.5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-30204",
"url": "https://www.suse.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "SUSE Bug 1240441 for CVE-2025-30204",
"url": "https://bugzilla.suse.com/1240441"
},
{
"category": "external",
"summary": "SUSE Bug 1240442 for CVE-2025-30204",
"url": "https://bugzilla.suse.com/1240442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2025-30204"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2025-68121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68121"
}
],
"notes": [
{
"category": "general",
"text": "During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68121",
"url": "https://www.suse.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "SUSE Bug 1256818 for CVE-2025-68121",
"url": "https://bugzilla.suse.com/1256818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2025-68121"
},
{
"cve": "CVE-2026-1229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-1229"
}
],
"notes": [
{
"category": "general",
"text": "The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas.\nECDH and ECDSA signing relying on this curve are not affected.\n\nThe bug was fixed in v1.6.3 https://github.com/cloudflare/circl/releases/tag/v1.6.3 .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-1229",
"url": "https://www.suse.com/security/cve/CVE-2026-1229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "critical"
}
],
"title": "CVE-2026-1229"
},
{
"cve": "CVE-2026-27141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27141"
}
],
"notes": [
{
"category": "general",
"text": "Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27141",
"url": "https://www.suse.com/security/cve/CVE-2026-27141"
},
{
"category": "external",
"summary": "SUSE Bug 1259062 for CVE-2026-27141",
"url": "https://bugzilla.suse.com/1259062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2026-27141"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-41176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41176"
}
],
"notes": [
{
"category": "general",
"text": "Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint `options/set` is exposed without `AuthRequired: true`, but it can mutate global runtime configuration, including the RC option block itself. Starting in version 1.45.0 and prior to version 1.73.5, an unauthenticated attacker can set `rc.NoAuth=true`, which disables the authorization gate for many RC methods registered with `AuthRequired: true` on reachable RC servers that are started without global HTTP authentication. This can lead to unauthorized access to sensitive administrative functionality, including configuration and operational RC methods. Version 1.73.5 patches the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41176",
"url": "https://www.suse.com/security/cve/CVE-2026-41176"
},
{
"category": "external",
"summary": "SUSE Bug 1262438 for CVE-2026-41176",
"url": "https://bugzilla.suse.com/1262438"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2026-41176"
},
{
"cve": "CVE-2026-41179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41179"
}
],
"notes": [
{
"category": "general",
"text": "Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint `operations/fsinfo` is exposed without `AuthRequired: true` and accepts attacker-controlled `fs` input. Because `rc.GetFs(...)` supports inline backend definitions, an unauthenticated attacker can instantiate an attacker-controlled backend on demand. For the WebDAV backend, `bearer_token_command` is executed during backend initialization, making single-request unauthenticated local command execution possible on reachable RC deployments without global HTTP authentication. Version 1.73.5 patches the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41179",
"url": "https://www.suse.com/security/cve/CVE-2026-41179"
},
{
"category": "external",
"summary": "SUSE Bug 1262439 for CVE-2026-41179",
"url": "https://bugzilla.suse.com/1262439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.aarch64",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:rclone-1.73.5-bp160.1.1.x86_64",
"openSUSE Leap 16.0:rclone-bash-completion-1.73.5-bp160.1.1.noarch",
"openSUSE Leap 16.0:rclone-zsh-completion-1.73.5-bp160.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T16:22:47Z",
"details": "moderate"
}
],
"title": "CVE-2026-41179"
}
]
}
OPENSUSE-SU-2026:20654-1
Vulnerability from csaf_opensuse - Published: 2026-04-29 16:12 - Updated: 2026-04-29 16:12Summary
Security update for grafana
Severity
Critical
Notes
Title of the patch: Security update for grafana
Description of the patch: This update for grafana fixes the following issues:
Changes in grafana:
- Update to version 11.6.11:
Features and enhancements:
* Alerting: Add limits for the size of expanded notification
templates
* Correlations: Remove support for org_id=0
Security:
* CVE-2026-21722: Public dashboards annotations: use dashboard
timerange if time selection disabled (bsc#1258136)
- Update to version 11.6.10:
Features and enhancements:
* API: Add missing scope check on dashboards
* Avatar: Require sign-in, remove queue, respect timeout
Bug fixes:
* Alerting: Fix a race condition panic in ResetStateByRuleUID
- Update to version 11.6.9:
Features and enhancements:
* Plugins: Add PluginContext to plugins when scenes is disabled
Bug fixes:
* Alerting: Fix contacts point issues
- Update to version 11.6.8:
Bug fixes:
* Alerting: Fix unmarshalling of GettableStatus to include time
intervals
- Update to version 11.6.7:
Bug fixes:
* Auth: Fix render user OAuth passthrough
* LDAP Authentication: Fix URL to propagate username context as
parameter
* Plugins: Dependencies do not inherit parent URL for preinstall
* URLParams: Stringify true values as key=true always (fixes
issues with variables with true value)
- Update to version 11.6.6:
Bug fixes:
* Alerting: Fix copying of recording rule fields
* Fix redirection after login when Grafana is served from subpath
- Update to version 11.6.5:
Features and enhancements:
* Alerting: Bump alerting package to include change to
NewTLSClient
- Update to version 11.6.4:
Features and enhancements:
* StateTimeline: Add endTime to tooltip
* Unified storage: Respect GF_DATABASE_URL override
Bug fixes:
* Alerting: Fix group interval override when adding new rules
* Azure: Fix legend formatting
* Azure: Fix resource name determination in template variable
queries
* Graphite: Fix annotation queries
* Graphite: Fix date mutation
* Graphite: Fix nested variable interpolation for repeated rows
- Update to version 11.6.3:
Security:
* Fixes CVE-2025-3415
- Update to version 11.6.2:
Bug fixes:
* Dashboard: Fixes issue with row repeats and first row
* Graphite: Ensure template variables are interpolated correctly
* Graphite: Fix Graphite series interpolation
* Prometheus: Fix semver import path
- Update to version 11.6.1:
Features and enhancements:
* DashboardScenePage: Correct slug in self referencing data links
* GrafanaUI: Use safePolygon close handler for interactive
tooltips instead of a delay
* Prometheus: Add support for cloud partners Prometheus data
sources
Bug fixes:
* Alertmanager: Add Role-Based Access Control via reqAction Field
* GrafanaUI: Remove blurred background from overlay backdrops to
improve performance
* InfluxDB: Fix nested variable interpolation
* LDAP test: Fix page crash
* Org redirection: Fix linking between orgs
- Upgrade to version 11.6.0:
Features and enhancements:
* Visualisations: One click links and actions
* Annotations: Add cron syntax support
* WebGL-powered geomaps for better performance
* Alerting: Add alert rule version history
Security:
* API keys: Migrate API keys to service accounts at startup
- CVE-2026-21721: Fix access control by the dashboard permissions API (bsc#1257337)
- CVE-2026-21720: Fix unauthenticated DoS (bsc#1257349)
- CVE-2025-68156: Fix potential DoS via unbounded recursion in builtin functions (bsc#1255340)
- CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client (bsc#1254113)
- Use forked wire from Grafana repository instead of external
package (jsc#PED-14178).
- Update to version 11.5.10:
Security:
* CVE-2025-47911: Fix parsing HTML documents (bsc#1251454)
* CVE-2025-58190: Fix excessive memory consumption (bsc#1251657)
Features and enhancements:
* Update to Go 1.25
* Update to golang.org/x/net v0.45.0
Bug fixes:
* Auth: Fix render user OAuth passthrough.
* LDAP Authentication: Fix URL to propagate username context as
parameter.
* Plugins: Dependencies do not inherit parent URL for preinstall.
- Update to version 11.5.9:
* Security:
CVE-2025-11065: Fix sensitive information leak in logs
(bsc#1250616)
* Features and enhancements:
Auditing: Document new options for recording datasource query
request/response body.
* Bug fixes:
Login: Fix redirection after login when Grafana is served from
subpath.
- Update to version 11.5.8:
* No relevant changes
- Update to version 11.5.7:
* Security:
CVE-2025-6023: Fix cross-site-scripting via scripted dashboards (bsc#1246735)
CVE-2025-6197: Fix open redirect in organization switching (bsc#1246736)
* Bug fixes:
Azure: Fix legend formatting.
Azure: Fix resource name determination in template variable
queries.
- Update to version 11.5.6:
* Security:
CVE-2025-3415: Fix exposure of DingDing alerting integration
URL to Viewer level users (bsc#1245302)
- Update to version 11.5.5 (jsc#PED-12918):
* Security:
CVE-2025-4123: Fix cross-site scripting vulnerability (bsc#1243714).
CVE-2025-22872: Bump golang.org/x/net/html (bsc#1241809)
CVE-2025-3580: Prevent unauthorized server admin deletion (bsc#1243672).
- Update to version 11.5.4:
* Security:
CVE-2025-29923: Bump github.com/redis/go-redis/v9 to 9.6.3.
CVE-2025-3454: Sanitize paths before evaluating access to route (bsc#1241683).
CVE-2025-2703: Fix built-in XY Chart plugin (bsc#1241687).
* Features and enhancements:
Azure Monitor: Filter namespaces by resource group.
Azure: Add support for custom namespace and custom metrics
variable queries.
Azure: Resource picker improvements.
Azure: Support more complex variable interpolation.
Azure: Variable editor and resource picker improvements.
DashboardScenePage: Correct slug in self referencing data
links.
Prometheus: Add support for cloud partners Prometheus data
sources.
* Bug fixes:
InfluxDB: Fix nested variable interpolation.
LDAP test: Fix page crash.
- Update to version 11.5.3:
* Security:
CVE-2025-22870: Bump golang.org/x/net (bsc#1238703).
* Bug fixes:
Alerting: Fix token-based Slack image upload to work with
channel names.
Auth: Fix AzureAD config UI's ClientAuthentication dropdown.
Dashboard: Fix the unintentional time range and variables
updates on saving.
Dashboards: Fix missing v/e/i keybindings to return back to
dashboard.
InfluxDB: Improve handling of template variables contained in
regular expressions (InfluxQL).
Org redirection: Fix linking between orgs.
- Update to version 11.5.2:
* Bug fixes:
Alerting: Allow specifying uid for new rules added to groups.
Alerting: Call RLock() before reading sendAlertsTo map.
Auth: Fix redirect with JWT auth URL login.
AuthN: Refetch user on "ErrUserAlreadyExists".
Azure: Correctly set application insights resource values.
DashboardList: Throttle the re-renders.
Dashboards: Bring back scripted dashboards.
Plugin Metrics: Eliminate data race in plugin metrics
middleware.
RBAC: Don't check folder access if annotationPermissionUpdate
FT is enabled.
- Update to version 11.5.1:
* Bug fixes:
CodeEditor: Fix cursor alignment.
TransformationFilter: Include transformation outputs in
transformation filtering options.
- Upgrade to version 11.5.0:
* Breaking changes:
Loki: Default to /labels API with query param instead of
/series API.
* Features and enhancements:
Extended Cloud Migration Assistent support for plugins and
alerts.
Redesigned filters for dashboards.
New regular expression option for Extract fields
transformation.
Redesigned sharing experience in Dashboards.
Customizable shareable dashboard panel images.
RBAC for alerting notifications and notification policies.
Add support for Elasticsearch cross-cluster search.
Time series macro support in visual query builder for SQL data
sources.
OAuth and SAML session handling improvements.
Plugin Frontend Sandbox for additiona security.
Renamed Public dashboards to Shared dashboards.
- Update to version 11.4.1:
* Bug fixes:
Alerting: AlertingQueryRunner should skip descendant nodes of
invalid queries.
Alerting: Fix alert rules unpausing after moving rule to
different folder.
Alerting: Fix label escaping in rule export.
Alerting: Fix slack image uploading to use new api.
Azure/GCM: Improve error display.
Dashboards: Fix issue where filtered panels would not react to
variable changes.
Dashboards: Fixes issue with panel header showing even when
hide time override was enabled.
Dashboards: Fixes week relative time ranges when weekStart was
changed.
Dashboards: Panel react for timeFrom and timeShift changes
using variables.
DateTimePicker: Fixes issue with date picker showing invalid
date.
Fix: Add support for datasource variable queries.
InfluxDB: Adhoc filters can use template vars as values.
LibraryPanel: Fallback to panel title if library panel title is
not set.
- Upgrade to version 11.4.0:
* Features and enhancements:
Cloudwatch: OpenSearch PPL and SQL support in Logs Insights.
- Update to version 11.3.1:
* Features and enhancements:
Alerting: Make context deadline on AlertNG service startup
configurable.
MigrationAssistant: Restrict dashboards, folders and
datasources by the org id of the signed in
user.
User: Check SignedInUser OrgID in RevokeInvite.
* Bug fixes:
Alerting: Fix escaping of silence matchers in utf8 mode.
Alerting: Fix overflow for long receiver names.
Alerting: Fix saving advanced mode toggle state in the alert
rule editor.
Alerting: Fix setting datasource uid, when datasource is string
in old version.
Alerting: Force refetch prom rules when refreshing panel.
Anonymous User: Adds validator service for anonymous users.
Azure Monitor: Support metric namespaces fallback.
Azure: Fix duplicated traces in multi-resource trace query.
Azure: Handle namespace request rejection.
CloudWatch: Interpolate region in log context query.
Dashboard datasource: Return annotations as series when query
topic is "annotations".
Dashboard: Append orgId to URL.
Dashboards: Fixes performance issue expanding a row.
Flame Graph: Fix crash when it receives empty data.
Folders: Add admin permissions upon creation of a folder w. SA.
Folders: Don't show error pop-up if the user can't fetch the
root folder.
Migration: Remove table aliasing in delete statement to make it
work for mariadb.
ServerLock: Fix pg concurrency/locking issue.
Service Accounts: Run service account creation in transaction.
Table: Fix text wrapping applying to wrong field.
Unified Storage: Use ssl_mode instead of sslmode.
- Update to version 11.3.0+security-01:
* Security:
CVE-2024-9476: Fix Migration Assistant issue (bsc#1233343)
- Upgrade to version 11.3.0:
* Features and enhancements:
View mode and Edit mode are generally available.
Template variables and the time range picker remain visible
when scrolling.
Added timezone parameter in Grafana URL.
Kiosk mode displays dashboard controls.
Auto-formatted table cell values in Cell Inspect.
Allow adding actions to canvas elements.
Legend support in bar gauge visualizations.
Apply the same binary transformation to all the number fields
in a given table at once.
Add support for data links and actions in several
visualizations.
The Explore Logs plugin is installed by default.
Added correlations to external URLs in Explore.
Simplified query section for alert rule creation.
Introduced recording rules for Grafana-managed alerts.
GitHub App authentication for the GitHub data source.
Improved subfolder creation flow.
Redesigned plugin details page.
Added UI for LDAP configuration.
Added RBAC support in Plugins.
- Update to version 11.2.2+security-01:
* Bug fix:
SQL Expressions: Fixes CVE-2024-9264 (bsc#1231844)
- Update to version 11.2.2:
* Features and enhancements:
Data sources: Hide the datasource redirection banner for users
who can't interact with data sources.
* Bug fixes:
Alerting: Fix preview of silences when label name contains
spaces.
Alerting: Make query wrapper match up datasource UIDs if
necessary.
AzureMonitor: Improve resource picker efficiency.
AzureMonitor: Remove Basic Logs retention warning.
CloudWatch: Fix segfault when migrating legacy queries.
DashboardScene: Fix broken error handling and error rendering.
Plugins: Avoid returning 404 for AutoEnabled apps.
- Update to version 11.2.1:
* Features and enhancements:
Alerting: Support for optimistic concurrency in priovisioning
Tempate API.
Logs panel: Enable displayedFields in dashboards and apps.
State timeline: Add pagination support.
* Bug fixes:
Authn: No longer hash service account token twice during
authentication.
CloudMigrations: Fix snapshot creation on Windows systems.
DashGPT: Fixes issue with generation on Safari.
Dashboard: Fix Annotation runtime error when a data source does
not support annotations.
Grafana SQL: Fix broken import in NumberInput component.
Logs: Show older logs button when infinite scroll is enabled
and sort order is descending.
RBAC: Fix an issue with server admins not being able to manage
users in orgs that they don't belong to.
Templating: Fix searching non-latin template variables.
- Upgrade to version 11.2.0:
* Features and enhancements:
Grafana Cloud Migration Assistant is in public preview.
Added navigation bookmarks.
Added template variables support in some transformations.
Introduced Transpose transformation.
Group to nested tables is now generally available.
Format string transformation is now generally available.
New cumulative and window calculations available in Add field
from calculation.
Canvas: Standardized tooltips.
Canvas: Allow adding data links without using an override.
Canvas: Allow opening data links with a single click.
Canvas: Add the ability to control the order in which data
links are displayed.
Added pagination support for state timeline.
Centralized alert history page.
Grafana Explore now allows for logs filtering and pinning in
content outline.
Added forward direction search for Loki.
Added Cloudwatch Metric Insights cross account observability
support.
Added Yugabyte data source.
Map org-specific user roles from your OAuth provider.
Better SAML integration for Azure AD.
API support for LDAP configuration (experimental).
OpenID Connect Discovery URL for Generic OAuth.
- Update to version 11.1.5:
* Bug fixes:
Alerting: Fix permissions for prometheus rule endpoints.
Alerting: Fix persisting result fingerprint that is used by
recovery threshold.
RBAC: Fix an issue with server admins not being able to manage
users in orgs that they don't belong to.
Snapshots: Fix panic when snapshot_remove_expired is true.
VizTooltip: Fix positioning at bottom and right edges on
mobile.
Plugins: Fix QueryField typeahead missing background color.
- Update to version 11.1.3:
* Bug fix:
RBAC: Allow plugins to use scoped actions.
- Update to version 11.1.1:
* Bug fixes:
Alerting: Skip fetching alerts for unsaved dashboards.
Alerting: Support utf8_strict_mode: false in Mimir.
Scenes: Fixes issue with panel repeat height calculation.
Table Panel: Fix Image hover without datalinks.
Tempo: Fix grpc streaming support over pdc-agent.
RBAC: Allow plugins to use scoped actions.
- Upgrade to version 11.1.0:
* Security:
CVE-2023-45288: Bump golang.org/x/net (bsc#1236510)
* Features and improvements:
Allow table cell text wrapping.
Added stat visualization percent change color mode options.
XA chart is generally available.
Redesigned settings page for Alerting.
Added alerting template selector.
Added OAuth2 to HTTP settings for vanilla Alertmanager / Mimir.
Improved paused alert visibility.
Rule-specific silences with permissions.
Support for AWS SNS integration in Grafana-managed alerts.
Added GeoMap and panel shortcut keyboard support.
Accessability headings improvements.
Added reduced motion support.
- Update to version 11.0.1:
* Breaking changes:
If you had selected your language as "Portugus Brasileiro"
previously, this will be reset. You have to select it again in
your Preferences for the fix to be applied and the translations
will then be shown.
* Bug fixes:
Echo: Suppress errors from frontend-metrics API call failing.
Analytics: Fix ApplicationInsights integration.
DashboardScene: Fixes issue removing override rule.
BrowseDashboards: Prepend subpath to New Browse Dashboard
actions.
Alerting: Fix rule storage to filter by group names using
case-sensitive comparison.
RBAC: List only the folders that the user has access to.
DashboardScene: Fixes lack of re-render when updating field
override properties.
DashboardScene: Fixes inspect with transforms issue.
AzureMonitor: Fix bug detecting app insights queries.
Access Control: Clean up permissions for deprovisioned data
sources.
Loki: Fix editor history in wrong order.
SSE: Fix threshold unmarshal to avoid panic.
LibraryPanels/RBAC: Ignore old folder permission check when
deleting/patching lib panel.
Dashboards: Correctly display Admin access to dashboards in the
UI.
LogsTable: Fix default sort by time.
Alerting: Fix rules deleting when reordering whilst filtered.
Alerting: Fix typo in JSON response for rule export.
CloudMonitoring: Fix query type selection issue.
Alerting: Fix scheduler to sort rules before evaluation.
DashboardScene: Skip panel repeats when values are the same.
Alerting: Do not store series values from past evaluations in
state manager for no reason.
DashboardScene: Fixing major row repeat issues.
DashboardScene: Fixes checkbox orienation in save forms.
- Upgrade to version 11.0.0:
* Breaking changes:
AngularJS support is turned off by default.
Legacy alerting is entirely removed.
Subfolders cause very rare issues with folders which have
slashes in their names.
The input data source is removed.
Data sources: Responses which are associated with hidden
queries will be removed (filtered) by Grafana.
The URL which is generated when viewing an individual repeated
panel has changed.
React Router is deprecated.
The grafana/e2e testing tool is deprecated.
* Features and enhancements:
Introduced Explore Metrics (public preview) and Explore Logs
(experimental).
Introduced edit mode to provide an easier way to discover and
interact with the dashboard edit exprerience.
Fixed positioning of template variables and time picker.
Introduced dashboard subfolders.
Use AI to generate titles and descriptions for panels and
dashboards.
Canvas: Enhanced flowcharting functionality.
Canvas: Universal data link support.
Canvas: Added infinite panning editor option.
Added colored table rows with conditional formatting.
Set threshold colors in the Config from query transformation.
Substring matcher added to the Filter by value transformation.
Keep Last State for Grafana Managed Alerting.
Redesigned alert detail view.
The Alerting Provisioning HTTP API has been updated to enforce
RBAC.
Removed old Tempo Search and Loki Search.
MSSQL: Windows Active Directory (Kerberos) authentication.
New strong password policy.
- CVE-2025-27144: Fix Go JOSE's Parsing Vulnerability (bsc#1237671)
- CVE-2024-51744: Fix bad documentation of error handling in ParseWithClaims (bsc#1232975)
- CVE-2024-45339: Fix vulnerability when creating log files (bsc#1236559)
- Update to version 10.4.15:
* Bugfixes
CVE-2024-11741: Fix the Grafana Alerting VictorOps integration
(bsc#1236734)
Chore: Bump dependency golang.org/x/crypto to v0.31.0
- Update to version 10.4.14:
* Bugfixes
Alerting: Do not fetch Orgs if the user is authenticated by
apikey/sa or render key
Patchnames: openSUSE-Leap-16.0-packagehub-225
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
9.9 (Critical)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
5.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
4.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.6 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.6 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.2 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.2 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
111 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grafana",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grafana fixes the following issues:\n\nChanges in grafana:\n\n- Update to version 11.6.11:\n Features and enhancements:\n * Alerting: Add limits for the size of expanded notification\n templates\n * Correlations: Remove support for org_id=0\n Security:\n * CVE-2026-21722: Public dashboards annotations: use dashboard\n timerange if time selection disabled (bsc#1258136)\n\n- Update to version 11.6.10:\n Features and enhancements:\n * API: Add missing scope check on dashboards\n * Avatar: Require sign-in, remove queue, respect timeout\n Bug fixes:\n * Alerting: Fix a race condition panic in ResetStateByRuleUID\n\n- Update to version 11.6.9:\n Features and enhancements:\n * Plugins: Add PluginContext to plugins when scenes is disabled\n Bug fixes:\n * Alerting: Fix contacts point issues\n\n- Update to version 11.6.8:\n Bug fixes:\n * Alerting: Fix unmarshalling of GettableStatus to include time\n intervals\n\n- Update to version 11.6.7:\n Bug fixes:\n * Auth: Fix render user OAuth passthrough\n * LDAP Authentication: Fix URL to propagate username context as\n parameter\n * Plugins: Dependencies do not inherit parent URL for preinstall\n * URLParams: Stringify true values as key=true always (fixes\n issues with variables with true value)\n\n- Update to version 11.6.6:\n Bug fixes:\n * Alerting: Fix copying of recording rule fields\n * Fix redirection after login when Grafana is served from subpath\n\n- Update to version 11.6.5:\n Features and enhancements:\n * Alerting: Bump alerting package to include change to\n NewTLSClient\n\n- Update to version 11.6.4:\n Features and enhancements:\n * StateTimeline: Add endTime to tooltip\n * Unified storage: Respect GF_DATABASE_URL override\n Bug fixes:\n * Alerting: Fix group interval override when adding new rules\n * Azure: Fix legend formatting\n * Azure: Fix resource name determination in template variable\n queries\n * Graphite: Fix annotation queries\n * Graphite: Fix date mutation\n * Graphite: Fix nested variable interpolation for repeated rows\n\n- Update to version 11.6.3:\n Security:\n * Fixes CVE-2025-3415\n\n- Update to version 11.6.2:\n Bug fixes:\n * Dashboard: Fixes issue with row repeats and first row\n * Graphite: Ensure template variables are interpolated correctly\n * Graphite: Fix Graphite series interpolation\n * Prometheus: Fix semver import path\n\n- Update to version 11.6.1:\n Features and enhancements:\n * DashboardScenePage: Correct slug in self referencing data links\n * GrafanaUI: Use safePolygon close handler for interactive\n tooltips instead of a delay\n * Prometheus: Add support for cloud partners Prometheus data\n sources\n Bug fixes:\n * Alertmanager: Add Role-Based Access Control via reqAction Field\n * GrafanaUI: Remove blurred background from overlay backdrops to\n improve performance\n * InfluxDB: Fix nested variable interpolation\n * LDAP test: Fix page crash\n * Org redirection: Fix linking between orgs\n\n- Upgrade to version 11.6.0:\n Features and enhancements:\n * Visualisations: One click links and actions\n * Annotations: Add cron syntax support\n * WebGL-powered geomaps for better performance\n * Alerting: Add alert rule version history\n Security:\n * API keys: Migrate API keys to service accounts at startup\n\n- CVE-2026-21721: Fix access control by the dashboard permissions API (bsc#1257337)\n- CVE-2026-21720: Fix unauthenticated DoS (bsc#1257349)\n- CVE-2025-68156: Fix potential DoS via unbounded recursion in builtin functions (bsc#1255340)\n- CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client (bsc#1254113)\n\n- Use forked wire from Grafana repository instead of external\n package (jsc#PED-14178).\n\n- Update to version 11.5.10:\n Security:\n * CVE-2025-47911: Fix parsing HTML documents (bsc#1251454)\n * CVE-2025-58190: Fix excessive memory consumption (bsc#1251657)\n Features and enhancements:\n * Update to Go 1.25\n * Update to golang.org/x/net v0.45.0\n Bug fixes:\n * Auth: Fix render user OAuth passthrough.\n * LDAP Authentication: Fix URL to propagate username context as\n parameter.\n * Plugins: Dependencies do not inherit parent URL for preinstall.\n\n- Update to version 11.5.9:\n * Security:\n CVE-2025-11065: Fix sensitive information leak in logs\n (bsc#1250616)\n * Features and enhancements:\n Auditing: Document new options for recording datasource query\n request/response body.\n * Bug fixes:\n Login: Fix redirection after login when Grafana is served from\n subpath.\n\n- Update to version 11.5.8:\n * No relevant changes\n\n- Update to version 11.5.7:\n * Security:\n CVE-2025-6023: Fix cross-site-scripting via scripted dashboards (bsc#1246735)\n CVE-2025-6197: Fix open redirect in organization switching (bsc#1246736)\n * Bug fixes:\n Azure: Fix legend formatting.\n Azure: Fix resource name determination in template variable\n queries.\n\n- Update to version 11.5.6:\n * Security:\n CVE-2025-3415: Fix exposure of DingDing alerting integration\n URL to Viewer level users (bsc#1245302)\n\n- Update to version 11.5.5 (jsc#PED-12918):\n * Security:\n CVE-2025-4123: Fix cross-site scripting vulnerability (bsc#1243714).\n CVE-2025-22872: Bump golang.org/x/net/html (bsc#1241809)\n CVE-2025-3580: Prevent unauthorized server admin deletion (bsc#1243672).\n\n- Update to version 11.5.4:\n * Security:\n CVE-2025-29923: Bump github.com/redis/go-redis/v9 to 9.6.3.\n CVE-2025-3454: Sanitize paths before evaluating access to route (bsc#1241683).\n CVE-2025-2703: Fix built-in XY Chart plugin (bsc#1241687).\n * Features and enhancements:\n Azure Monitor: Filter namespaces by resource group.\n Azure: Add support for custom namespace and custom metrics\n variable queries.\n Azure: Resource picker improvements.\n Azure: Support more complex variable interpolation.\n Azure: Variable editor and resource picker improvements.\n DashboardScenePage: Correct slug in self referencing data\n links.\n Prometheus: Add support for cloud partners Prometheus data\n sources.\n * Bug fixes:\n InfluxDB: Fix nested variable interpolation.\n LDAP test: Fix page crash.\n\n- Update to version 11.5.3:\n * Security:\n CVE-2025-22870: Bump golang.org/x/net (bsc#1238703).\n * Bug fixes:\n Alerting: Fix token-based Slack image upload to work with\n channel names.\n Auth: Fix AzureAD config UI\u0027s ClientAuthentication dropdown.\n Dashboard: Fix the unintentional time range and variables\n updates on saving.\n Dashboards: Fix missing v/e/i keybindings to return back to\n dashboard.\n InfluxDB: Improve handling of template variables contained in\n regular expressions (InfluxQL).\n Org redirection: Fix linking between orgs.\n\n- Update to version 11.5.2:\n * Bug fixes:\n Alerting: Allow specifying uid for new rules added to groups.\n Alerting: Call RLock() before reading sendAlertsTo map.\n Auth: Fix redirect with JWT auth URL login.\n AuthN: Refetch user on \"ErrUserAlreadyExists\".\n Azure: Correctly set application insights resource values.\n DashboardList: Throttle the re-renders.\n Dashboards: Bring back scripted dashboards.\n Plugin Metrics: Eliminate data race in plugin metrics\n middleware.\n RBAC: Don\u0027t check folder access if annotationPermissionUpdate\n FT is enabled.\n\n- Update to version 11.5.1:\n * Bug fixes:\n CodeEditor: Fix cursor alignment.\n TransformationFilter: Include transformation outputs in\n transformation filtering options.\n\n- Upgrade to version 11.5.0:\n * Breaking changes:\n Loki: Default to /labels API with query param instead of\n /series API.\n * Features and enhancements:\n Extended Cloud Migration Assistent support for plugins and\n alerts.\n Redesigned filters for dashboards.\n New regular expression option for Extract fields\n transformation.\n Redesigned sharing experience in Dashboards.\n Customizable shareable dashboard panel images.\n RBAC for alerting notifications and notification policies.\n Add support for Elasticsearch cross-cluster search.\n Time series macro support in visual query builder for SQL data\n sources.\n OAuth and SAML session handling improvements.\n Plugin Frontend Sandbox for additiona security.\n Renamed Public dashboards to Shared dashboards.\n\n- Update to version 11.4.1:\n * Bug fixes:\n Alerting: AlertingQueryRunner should skip descendant nodes of\n invalid queries.\n Alerting: Fix alert rules unpausing after moving rule to\n different folder.\n Alerting: Fix label escaping in rule export.\n Alerting: Fix slack image uploading to use new api.\n Azure/GCM: Improve error display.\n Dashboards: Fix issue where filtered panels would not react to\n variable changes.\n Dashboards: Fixes issue with panel header showing even when\n hide time override was enabled.\n Dashboards: Fixes week relative time ranges when weekStart was\n changed.\n Dashboards: Panel react for timeFrom and timeShift changes\n using variables.\n DateTimePicker: Fixes issue with date picker showing invalid\n date.\n Fix: Add support for datasource variable queries.\n InfluxDB: Adhoc filters can use template vars as values.\n LibraryPanel: Fallback to panel title if library panel title is\n not set.\n\n- Upgrade to version 11.4.0:\n * Features and enhancements:\n Cloudwatch: OpenSearch PPL and SQL support in Logs Insights.\n\n- Update to version 11.3.1:\n * Features and enhancements:\n Alerting: Make context deadline on AlertNG service startup\n configurable.\n MigrationAssistant: Restrict dashboards, folders and\n datasources by the org id of the signed in\n user.\n User: Check SignedInUser OrgID in RevokeInvite.\n * Bug fixes:\n Alerting: Fix escaping of silence matchers in utf8 mode.\n Alerting: Fix overflow for long receiver names.\n Alerting: Fix saving advanced mode toggle state in the alert\n rule editor.\n Alerting: Fix setting datasource uid, when datasource is string\n in old version.\n Alerting: Force refetch prom rules when refreshing panel.\n Anonymous User: Adds validator service for anonymous users.\n Azure Monitor: Support metric namespaces fallback.\n Azure: Fix duplicated traces in multi-resource trace query.\n Azure: Handle namespace request rejection.\n CloudWatch: Interpolate region in log context query.\n Dashboard datasource: Return annotations as series when query\n topic is \"annotations\".\n Dashboard: Append orgId to URL.\n Dashboards: Fixes performance issue expanding a row.\n Flame Graph: Fix crash when it receives empty data.\n Folders: Add admin permissions upon creation of a folder w. SA.\n Folders: Don\u0027t show error pop-up if the user can\u0027t fetch the\n root folder.\n Migration: Remove table aliasing in delete statement to make it\n work for mariadb.\n ServerLock: Fix pg concurrency/locking issue.\n Service Accounts: Run service account creation in transaction.\n Table: Fix text wrapping applying to wrong field.\n Unified Storage: Use ssl_mode instead of sslmode.\n\n- Update to version 11.3.0+security-01:\n * Security:\n CVE-2024-9476: Fix Migration Assistant issue (bsc#1233343)\n\n- Upgrade to version 11.3.0:\n * Features and enhancements:\n View mode and Edit mode are generally available.\n Template variables and the time range picker remain visible\n when scrolling.\n Added timezone parameter in Grafana URL.\n Kiosk mode displays dashboard controls.\n Auto-formatted table cell values in Cell Inspect.\n Allow adding actions to canvas elements.\n Legend support in bar gauge visualizations.\n Apply the same binary transformation to all the number fields\n in a given table at once.\n Add support for data links and actions in several\n visualizations.\n The Explore Logs plugin is installed by default.\n Added correlations to external URLs in Explore.\n Simplified query section for alert rule creation.\n Introduced recording rules for Grafana-managed alerts.\n GitHub App authentication for the GitHub data source.\n Improved subfolder creation flow.\n Redesigned plugin details page.\n Added UI for LDAP configuration.\n Added RBAC support in Plugins.\n\n- Update to version 11.2.2+security-01:\n * Bug fix:\n SQL Expressions: Fixes CVE-2024-9264 (bsc#1231844)\n\n- Update to version 11.2.2:\n * Features and enhancements:\n Data sources: Hide the datasource redirection banner for users\n who can\u0027t interact with data sources.\n * Bug fixes:\n Alerting: Fix preview of silences when label name contains\n spaces.\n Alerting: Make query wrapper match up datasource UIDs if\n necessary.\n AzureMonitor: Improve resource picker efficiency.\n AzureMonitor: Remove Basic Logs retention warning.\n CloudWatch: Fix segfault when migrating legacy queries.\n DashboardScene: Fix broken error handling and error rendering.\n Plugins: Avoid returning 404 for AutoEnabled apps.\n\n- Update to version 11.2.1:\n * Features and enhancements:\n Alerting: Support for optimistic concurrency in priovisioning\n Tempate API.\n Logs panel: Enable displayedFields in dashboards and apps.\n State timeline: Add pagination support.\n * Bug fixes:\n Authn: No longer hash service account token twice during\n authentication.\n CloudMigrations: Fix snapshot creation on Windows systems.\n DashGPT: Fixes issue with generation on Safari.\n Dashboard: Fix Annotation runtime error when a data source does\n not support annotations.\n Grafana SQL: Fix broken import in NumberInput component.\n Logs: Show older logs button when infinite scroll is enabled\n and sort order is descending.\n RBAC: Fix an issue with server admins not being able to manage\n users in orgs that they don\u0027t belong to.\n Templating: Fix searching non-latin template variables.\n\n- Upgrade to version 11.2.0:\n * Features and enhancements:\n Grafana Cloud Migration Assistant is in public preview.\n Added navigation bookmarks.\n Added template variables support in some transformations.\n Introduced Transpose transformation.\n Group to nested tables is now generally available.\n Format string transformation is now generally available.\n New cumulative and window calculations available in Add field\n from calculation.\n Canvas: Standardized tooltips.\n Canvas: Allow adding data links without using an override.\n Canvas: Allow opening data links with a single click.\n Canvas: Add the ability to control the order in which data\n links are displayed.\n Added pagination support for state timeline.\n Centralized alert history page.\n Grafana Explore now allows for logs filtering and pinning in\n content outline.\n Added forward direction search for Loki.\n Added Cloudwatch Metric Insights cross account observability\n support.\n Added Yugabyte data source.\n Map org-specific user roles from your OAuth provider.\n Better SAML integration for Azure AD.\n API support for LDAP configuration (experimental).\n OpenID Connect Discovery URL for Generic OAuth.\n\n- Update to version 11.1.5:\n * Bug fixes:\n Alerting: Fix permissions for prometheus rule endpoints.\n Alerting: Fix persisting result fingerprint that is used by\n recovery threshold.\n RBAC: Fix an issue with server admins not being able to manage\n users in orgs that they don\u0027t belong to.\n Snapshots: Fix panic when snapshot_remove_expired is true.\n VizTooltip: Fix positioning at bottom and right edges on\n mobile.\n Plugins: Fix QueryField typeahead missing background color.\n\n- Update to version 11.1.3:\n * Bug fix:\n RBAC: Allow plugins to use scoped actions.\n\n- Update to version 11.1.1:\n * Bug fixes:\n Alerting: Skip fetching alerts for unsaved dashboards.\n Alerting: Support utf8_strict_mode: false in Mimir.\n Scenes: Fixes issue with panel repeat height calculation.\n Table Panel: Fix Image hover without datalinks.\n Tempo: Fix grpc streaming support over pdc-agent.\n RBAC: Allow plugins to use scoped actions.\n\n- Upgrade to version 11.1.0:\n * Security:\n CVE-2023-45288: Bump golang.org/x/net (bsc#1236510)\n * Features and improvements:\n Allow table cell text wrapping.\n Added stat visualization percent change color mode options.\n XA chart is generally available.\n Redesigned settings page for Alerting.\n Added alerting template selector.\n Added OAuth2 to HTTP settings for vanilla Alertmanager / Mimir.\n Improved paused alert visibility.\n Rule-specific silences with permissions.\n Support for AWS SNS integration in Grafana-managed alerts.\n Added GeoMap and panel shortcut keyboard support.\n Accessability headings improvements.\n Added reduced motion support.\n\n- Update to version 11.0.1:\n * Breaking changes:\n If you had selected your language as \"Portugus Brasileiro\"\n previously, this will be reset. You have to select it again in\n your Preferences for the fix to be applied and the translations\n will then be shown.\n * Bug fixes:\n Echo: Suppress errors from frontend-metrics API call failing.\n Analytics: Fix ApplicationInsights integration.\n DashboardScene: Fixes issue removing override rule.\n BrowseDashboards: Prepend subpath to New Browse Dashboard\n actions.\n Alerting: Fix rule storage to filter by group names using\n case-sensitive comparison.\n RBAC: List only the folders that the user has access to.\n DashboardScene: Fixes lack of re-render when updating field\n override properties.\n DashboardScene: Fixes inspect with transforms issue.\n AzureMonitor: Fix bug detecting app insights queries.\n Access Control: Clean up permissions for deprovisioned data\n sources.\n Loki: Fix editor history in wrong order.\n SSE: Fix threshold unmarshal to avoid panic.\n LibraryPanels/RBAC: Ignore old folder permission check when\n deleting/patching lib panel.\n Dashboards: Correctly display Admin access to dashboards in the\n UI.\n LogsTable: Fix default sort by time.\n Alerting: Fix rules deleting when reordering whilst filtered.\n Alerting: Fix typo in JSON response for rule export.\n CloudMonitoring: Fix query type selection issue.\n Alerting: Fix scheduler to sort rules before evaluation.\n DashboardScene: Skip panel repeats when values are the same.\n Alerting: Do not store series values from past evaluations in\n state manager for no reason.\n DashboardScene: Fixing major row repeat issues.\n DashboardScene: Fixes checkbox orienation in save forms.\n\n- Upgrade to version 11.0.0:\n * Breaking changes:\n AngularJS support is turned off by default.\n Legacy alerting is entirely removed.\n Subfolders cause very rare issues with folders which have\n slashes in their names.\n The input data source is removed.\n Data sources: Responses which are associated with hidden\n queries will be removed (filtered) by Grafana.\n The URL which is generated when viewing an individual repeated\n panel has changed.\n React Router is deprecated.\n The grafana/e2e testing tool is deprecated.\n * Features and enhancements:\n Introduced Explore Metrics (public preview) and Explore Logs\n (experimental).\n Introduced edit mode to provide an easier way to discover and\n interact with the dashboard edit exprerience.\n Fixed positioning of template variables and time picker.\n Introduced dashboard subfolders.\n Use AI to generate titles and descriptions for panels and\n dashboards.\n Canvas: Enhanced flowcharting functionality.\n Canvas: Universal data link support.\n Canvas: Added infinite panning editor option.\n Added colored table rows with conditional formatting.\n Set threshold colors in the Config from query transformation.\n Substring matcher added to the Filter by value transformation.\n Keep Last State for Grafana Managed Alerting.\n Redesigned alert detail view.\n The Alerting Provisioning HTTP API has been updated to enforce\n RBAC.\n Removed old Tempo Search and Loki Search.\n MSSQL: Windows Active Directory (Kerberos) authentication.\n New strong password policy.\n\n- CVE-2025-27144: Fix Go JOSE\u0027s Parsing Vulnerability (bsc#1237671)\n- CVE-2024-51744: Fix bad documentation of error handling in ParseWithClaims (bsc#1232975)\n- CVE-2024-45339: Fix vulnerability when creating log files (bsc#1236559)\n\n- Update to version 10.4.15:\n * Bugfixes\n CVE-2024-11741: Fix the Grafana Alerting VictorOps integration\n (bsc#1236734)\n Chore: Bump dependency golang.org/x/crypto to v0.31.0\n\n- Update to version 10.4.14:\n * Bugfixes\n Alerting: Do not fetch Orgs if the user is authenticated by\n apikey/sa or render key\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-packagehub-225",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20654-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1231844",
"url": "https://bugzilla.suse.com/1231844"
},
{
"category": "self",
"summary": "SUSE Bug 1232975",
"url": "https://bugzilla.suse.com/1232975"
},
{
"category": "self",
"summary": "SUSE Bug 1233343",
"url": "https://bugzilla.suse.com/1233343"
},
{
"category": "self",
"summary": "SUSE Bug 1235206",
"url": "https://bugzilla.suse.com/1235206"
},
{
"category": "self",
"summary": "SUSE Bug 1235574",
"url": "https://bugzilla.suse.com/1235574"
},
{
"category": "self",
"summary": "SUSE Bug 1236510",
"url": "https://bugzilla.suse.com/1236510"
},
{
"category": "self",
"summary": "SUSE Bug 1236559",
"url": "https://bugzilla.suse.com/1236559"
},
{
"category": "self",
"summary": "SUSE Bug 1236734",
"url": "https://bugzilla.suse.com/1236734"
},
{
"category": "self",
"summary": "SUSE Bug 1237671",
"url": "https://bugzilla.suse.com/1237671"
},
{
"category": "self",
"summary": "SUSE Bug 1238703",
"url": "https://bugzilla.suse.com/1238703"
},
{
"category": "self",
"summary": "SUSE Bug 1241683",
"url": "https://bugzilla.suse.com/1241683"
},
{
"category": "self",
"summary": "SUSE Bug 1241687",
"url": "https://bugzilla.suse.com/1241687"
},
{
"category": "self",
"summary": "SUSE Bug 1241809",
"url": "https://bugzilla.suse.com/1241809"
},
{
"category": "self",
"summary": "SUSE Bug 1243672",
"url": "https://bugzilla.suse.com/1243672"
},
{
"category": "self",
"summary": "SUSE Bug 1243714",
"url": "https://bugzilla.suse.com/1243714"
},
{
"category": "self",
"summary": "SUSE Bug 1245302",
"url": "https://bugzilla.suse.com/1245302"
},
{
"category": "self",
"summary": "SUSE Bug 1246735",
"url": "https://bugzilla.suse.com/1246735"
},
{
"category": "self",
"summary": "SUSE Bug 1246736",
"url": "https://bugzilla.suse.com/1246736"
},
{
"category": "self",
"summary": "SUSE Bug 1250616",
"url": "https://bugzilla.suse.com/1250616"
},
{
"category": "self",
"summary": "SUSE Bug 1251454",
"url": "https://bugzilla.suse.com/1251454"
},
{
"category": "self",
"summary": "SUSE Bug 1251657",
"url": "https://bugzilla.suse.com/1251657"
},
{
"category": "self",
"summary": "SUSE Bug 1254113",
"url": "https://bugzilla.suse.com/1254113"
},
{
"category": "self",
"summary": "SUSE Bug 1255340",
"url": "https://bugzilla.suse.com/1255340"
},
{
"category": "self",
"summary": "SUSE Bug 1257337",
"url": "https://bugzilla.suse.com/1257337"
},
{
"category": "self",
"summary": "SUSE Bug 1257349",
"url": "https://bugzilla.suse.com/1257349"
},
{
"category": "self",
"summary": "SUSE Bug 1258136",
"url": "https://bugzilla.suse.com/1258136"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-11741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-11741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45339 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-51744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-51744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9264 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9476 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9476/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-11065 page",
"url": "https://www.suse.com/security/cve/CVE-2025-11065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22872 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-2703 page",
"url": "https://www.suse.com/security/cve/CVE-2025-2703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27144 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27144/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-29923 page",
"url": "https://www.suse.com/security/cve/CVE-2025-29923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-3415 page",
"url": "https://www.suse.com/security/cve/CVE-2025-3415/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-3454 page",
"url": "https://www.suse.com/security/cve/CVE-2025-3454/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-3580 page",
"url": "https://www.suse.com/security/cve/CVE-2025-3580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-4123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-4123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6023 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6197 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21720 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21721 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21722 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21722/"
}
],
"title": "Security update for grafana",
"tracking": {
"current_release_date": "2026-04-29T16:12:10Z",
"generator": {
"date": "2026-04-29T16:12:10Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20654-1",
"initial_release_date": "2026-04-29T16:12:10Z",
"revision_history": [
{
"date": "2026-04-29T16:12:10Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.11-bp160.1.1.aarch64",
"product": {
"name": "grafana-11.6.11-bp160.1.1.aarch64",
"product_id": "grafana-11.6.11-bp160.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.11-bp160.1.1.ppc64le",
"product": {
"name": "grafana-11.6.11-bp160.1.1.ppc64le",
"product_id": "grafana-11.6.11-bp160.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.11-bp160.1.1.s390x",
"product": {
"name": "grafana-11.6.11-bp160.1.1.s390x",
"product_id": "grafana-11.6.11-bp160.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.11-bp160.1.1.x86_64",
"product": {
"name": "grafana-11.6.11-bp160.1.1.x86_64",
"product_id": "grafana-11.6.11-bp160.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.11-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64"
},
"product_reference": "grafana-11.6.11-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.11-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le"
},
"product_reference": "grafana-11.6.11-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.11-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x"
},
"product_reference": "grafana-11.6.11-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.11-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
},
"product_reference": "grafana-11.6.11-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-11741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-11741"
}
],
"notes": [
{
"category": "general",
"text": "Grafana is an open-source platform for monitoring and observability. \nThe Grafana Alerting VictorOps integration was not properly protected and could be exposed to users with Viewer permission. \nFixed in versions 11.5.0, 11.4.1, 11.3.3, 11.2.6, 11.1.11, 11.0.11 and 10.4.15",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-11741",
"url": "https://www.suse.com/security/cve/CVE-2024-11741"
},
{
"category": "external",
"summary": "SUSE Bug 1236734 for CVE-2024-11741",
"url": "https://bugzilla.suse.com/1236734"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2024-11741"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-45339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45339"
}
],
"notes": [
{
"category": "general",
"text": "When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process\u0027s log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that sensitive file. To fix that, glog now causes the program to exit (with status code 2) when it finds that the configured log file already exists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45339",
"url": "https://www.suse.com/security/cve/CVE-2024-45339"
},
{
"category": "external",
"summary": "SUSE Bug 1236541 for CVE-2024-45339",
"url": "https://bugzilla.suse.com/1236541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2024-45339"
},
{
"cve": "CVE-2024-51744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-51744"
}
],
"notes": [
{
"category": "general",
"text": "golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in `ParseWithClaims` can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by `ParseWithClaims` return both error codes. If users only check for the `jwt.ErrTokenExpired ` using `error.Is`, they will ignore the embedded `jwt.ErrTokenSignatureInvalid` and thus potentially accept invalid tokens. A fix has been back-ported with the error handling logic from the `v5` branch to the `v4` branch. In this logic, the `ParseWithClaims` function will immediately return in \"dangerous\" situations (e.g., an invalid signature), limiting the combined errors only to situations where the signature is valid, but further validation failed (e.g., if the signature is valid, but is expired AND has the wrong audience). This fix is part of the 4.5.1 release. We are aware that this changes the behaviour of an established function and is not 100 % backwards compatible, so updating to 4.5.1 might break your code. In case you cannot update to 4.5.0, please make sure that you are properly checking for all errors (\"dangerous\" ones first), so that you are not running in the case detailed above.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-51744",
"url": "https://www.suse.com/security/cve/CVE-2024-51744"
},
{
"category": "external",
"summary": "SUSE Bug 1232936 for CVE-2024-51744",
"url": "https://bugzilla.suse.com/1232936"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2024-51744"
},
{
"cve": "CVE-2024-9264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9264"
}
],
"notes": [
{
"category": "general",
"text": "The SQL Expressions experimental feature of Grafana allows for the evaluation of `duckdb` queries containing user input. These queries are insufficiently sanitized before being passed to `duckdb`, leading to a command injection and local file inclusion vulnerability. Any user with the VIEWER or higher permission is capable of executing this attack. The `duckdb` binary must be present in Grafana\u0027s $PATH for this attack to function; by default, this binary is not installed in Grafana distributions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9264",
"url": "https://www.suse.com/security/cve/CVE-2024-9264"
},
{
"category": "external",
"summary": "SUSE Bug 1231844 for CVE-2024-9264",
"url": "https://bugzilla.suse.com/1231844"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "critical"
}
],
"title": "CVE-2024-9264"
},
{
"cve": "CVE-2024-9476",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9476"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in Grafana Labs Grafana OSS and Enterprise allows Privilege Escalation allows users to gain access to resources from other organizations within the same Grafana instance via the Grafana Cloud Migration Assistant.This vulnerability will only affect users who utilize the Organizations feature to isolate resources on their Grafana instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9476",
"url": "https://www.suse.com/security/cve/CVE-2024-9476"
},
{
"category": "external",
"summary": "SUSE Bug 1233343 for CVE-2024-9476",
"url": "https://bugzilla.suse.com/1233343"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2024-9476"
},
{
"cve": "CVE-2025-11065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-11065"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-11065",
"url": "https://www.suse.com/security/cve/CVE-2025-11065"
},
{
"category": "external",
"summary": "SUSE Bug 1250608 for CVE-2025-11065",
"url": "https://bugzilla.suse.com/1250608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-11065"
},
{
"cve": "CVE-2025-21613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21613"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only happens when the file transport protocol is being used, as that is the only protocol that shells out to git binaries. This vulnerability is fixed in 5.13.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21613",
"url": "https://www.suse.com/security/cve/CVE-2025-21613"
},
{
"category": "external",
"summary": "SUSE Bug 1235572 for CVE-2025-21613",
"url": "https://bugzilla.suse.com/1235572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-21613"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-22872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22872"
}
],
"notes": [
{
"category": "general",
"text": "The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. \u003cmath\u003e, \u003csvg\u003e, etc contexts).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22872",
"url": "https://www.suse.com/security/cve/CVE-2025-22872"
},
{
"category": "external",
"summary": "SUSE Bug 1241710 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1241710"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-22872"
},
{
"cve": "CVE-2025-2703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-2703"
}
],
"notes": [
{
"category": "general",
"text": "The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. \n\nA user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-2703",
"url": "https://www.suse.com/security/cve/CVE-2025-2703"
},
{
"category": "external",
"summary": "SUSE Bug 1241687 for CVE-2025-2703",
"url": "https://bugzilla.suse.com/1241687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-2703"
},
{
"cve": "CVE-2025-27144",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27144"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. In versions on the 4.x branch prior to version 4.0.5, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code used strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service. Version 4.0.5 fixes this issue. As a workaround, applications could pre-validate that payloads passed to Go JOSE do not contain an excessive number of `.` characters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27144",
"url": "https://www.suse.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "SUSE Bug 1237608 for CVE-2025-27144",
"url": "https://bugzilla.suse.com/1237608"
},
{
"category": "external",
"summary": "SUSE Bug 1237609 for CVE-2025-27144",
"url": "https://bugzilla.suse.com/1237609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-27144"
},
{
"cve": "CVE-2025-29923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-29923"
}
],
"notes": [
{
"category": "general",
"text": "go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when `CLIENT SETINFO` times out during connection establishment. This can happen when the client is configured to transmit its identity, there are network connectivity issues, or the client was configured with aggressive timeouts. The problem occurs for multiple use cases. For sticky connections, you receive persistent out-of-order responses for the lifetime of the connection. All commands in the pipeline receive incorrect responses. When used with the default ConnPool once a connection is returned after use with ConnPool#Put the read buffer will be checked and the connection will be marked as bad due to the unread data. This means that at most one out-of-order response before the connection is discarded. This issue is fixed in 9.5.5, 9.6.3, and 9.7.3. You can prevent the vulnerability by setting the flag DisableIndentity to true when constructing the client instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-29923",
"url": "https://www.suse.com/security/cve/CVE-2025-29923"
},
{
"category": "external",
"summary": "SUSE Bug 1241152 for CVE-2025-29923",
"url": "https://bugzilla.suse.com/1241152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "low"
}
],
"title": "CVE-2025-29923"
},
{
"cve": "CVE-2025-3415",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-3415"
}
],
"notes": [
{
"category": "general",
"text": "Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. \nFixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01, 11.5.5+security-01, 11.6.2+security-01 and 12.0.1+security-01",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-3415",
"url": "https://www.suse.com/security/cve/CVE-2025-3415"
},
{
"category": "external",
"summary": "SUSE Bug 1245302 for CVE-2025-3415",
"url": "https://bugzilla.suse.com/1245302"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-3415"
},
{
"cve": "CVE-2025-3454",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-3454"
}
],
"notes": [
{
"category": "general",
"text": "This vulnerability in Grafana\u0027s datasource proxy API allows authorization checks to be bypassed by adding an extra slash character in the URL path.\n\nUsers with minimal permissions could gain unauthorized read access to GET endpoints in Alertmanager and Prometheus datasources.\n\nThe issue primarily affects datasources that implement route-specific permissions, including Alertmanager and certain Prometheus-based datasources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-3454",
"url": "https://www.suse.com/security/cve/CVE-2025-3454"
},
{
"category": "external",
"summary": "SUSE Bug 1241683 for CVE-2025-3454",
"url": "https://bugzilla.suse.com/1241683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-3454"
},
{
"cve": "CVE-2025-3580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-3580"
}
],
"notes": [
{
"category": "general",
"text": "An access control vulnerability was discovered in Grafana OSS where an Organization administrator could permanently delete the Server administrator account. This vulnerability exists in the DELETE /api/org/users/ endpoint.\n\nThe vulnerability can be exploited when:\n\n1. An Organization administrator exists\n\n2. The Server administrator is either:\n\n - Not part of any organization, or\n - Part of the same organization as the Organization administrator\nImpact:\n\n- Organization administrators can permanently delete Server administrator accounts\n\n- If the only Server administrator is deleted, the Grafana instance becomes unmanageable\n\n- No super-user permissions remain in the system\n\n- Affects all users, organizations, and teams managed in the instance\n\nThe vulnerability is particularly serious as it can lead to a complete loss of administrative control over the Grafana instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-3580",
"url": "https://www.suse.com/security/cve/CVE-2025-3580"
},
{
"category": "external",
"summary": "SUSE Bug 1243672 for CVE-2025-3580",
"url": "https://bugzilla.suse.com/1243672"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-3580"
},
{
"cve": "CVE-2025-4123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-4123"
}
],
"notes": [
{
"category": "general",
"text": "A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect. This allows attackers to redirect users to a website that hosts a frontend plugin that will execute arbitrary JavaScript. This vulnerability does not require editor permissions and if anonymous access is enabled, the XSS will work. If the Grafana Image Renderer plugin is installed, it is possible to exploit the open redirect to achieve a full read SSRF.\n\nThe default Content-Security-Policy (CSP) in Grafana will block the XSS though the `connect-src` directive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-4123",
"url": "https://www.suse.com/security/cve/CVE-2025-4123"
},
{
"category": "external",
"summary": "SUSE Bug 1243714 for CVE-2025-4123",
"url": "https://bugzilla.suse.com/1243714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-4123"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2025-6023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6023"
}
],
"notes": [
{
"category": "general",
"text": "An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana v11.5.0.\n\nThe open redirect can be chained with path traversal vulnerabilities to achieve XSS.\n\nFixed in versions 12.0.2+security-01, 11.6.3+security-01, 11.5.6+security-01, 11.4.6+security-01 and 11.3.8+security-01",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6023",
"url": "https://www.suse.com/security/cve/CVE-2025-6023"
},
{
"category": "external",
"summary": "SUSE Bug 1246735 for CVE-2025-6023",
"url": "https://bugzilla.suse.com/1246735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-6023"
},
{
"cve": "CVE-2025-6197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6197"
}
],
"notes": [
{
"category": "general",
"text": "An open redirect vulnerability has been identified in Grafana OSS organization switching functionality.\n\n\nPrerequisites for exploitation:\n\n- Multiple organizations must exist in the Grafana instance\n\n- Victim must be on a different organization than the one specified in the URL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6197",
"url": "https://www.suse.com/security/cve/CVE-2025-6197"
},
{
"category": "external",
"summary": "SUSE Bug 1246736 for CVE-2025-6197",
"url": "https://bugzilla.suse.com/1246736"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2025-6197"
},
{
"cve": "CVE-2025-64751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64751"
}
],
"notes": [
{
"category": "general",
"text": "OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.4.0 to v1.11.0 ( openfga-0.1.34 \u003c= Helm chart \u003c= openfga-0.2.48, v.1.4.0 \u003c= docker \u003c= v.1.11.0) are vulnerable to improper policy enforcement when certain Check and ListObject calls are executed. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64751",
"url": "https://www.suse.com/security/cve/CVE-2025-64751"
},
{
"category": "external",
"summary": "SUSE Bug 1254112 for CVE-2025-64751",
"url": "https://bugzilla.suse.com/1254112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-64751"
},
{
"cve": "CVE-2025-68156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68156"
}
],
"notes": [
{
"category": "general",
"text": "Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr, including `flatten`, `min`, `max`, `mean`, and `median`, perform recursive traversal over user-provided data structures without enforcing a maximum recursion depth. If the evaluation environment contains deeply nested or cyclic data structures, these functions may recurse indefinitely until exceed the Go runtime stack limit. This results in a stack overflow panic, causing the host application to crash. While exploitability depends on whether an attacker can influence or inject cyclic or pathologically deep data into the\nevaluation environment, this behavior represents a denial-of-service (DoS) risk and affects overall library robustness. Instead of returning a recoverable evaluation error, the process may terminate unexpectedly. In affected versions, evaluation of expressions that invoke certain builtin functions on untrusted or insufficiently validated data structures can lead to a process-level crash due to stack exhaustion. This issue is most relevant in scenarios where Expr is used to evaluate expressions against externally supplied or dynamically constructed environments; cyclic references (directly or indirectly) can be introduced into arrays, maps, or structs; and there are no application-level safeguards preventing deeply nested input data. In typical use cases with controlled, acyclic data, the issue may not manifest. However, when present, the resulting panic can be used to reliably crash the application, constituting a denial of service. The issue has been fixed in the v1.17.7 versions of Expr. The patch introduces a maximum recursion depth limit for affected builtin functions. When this limit is exceeded, evaluation aborts gracefully and returns a descriptive error instead of panicking. Additionally, the maximum depth can be customized by users via `builtin.MaxDepth`, allowing applications with legitimate deep structures to raise the limit in a controlled manner. Users are strongly encouraged to upgrade to the patched release, which includes both the recursion guard and comprehensive test coverage to prevent regressions. For users who cannot immediately upgrade, some mitigations are recommended. Ensure that evaluation environments cannot contain cyclic references, validate or sanitize externally supplied data structures before passing them to Expr, and/or wrap expression evaluation with panic recovery to prevent a full process crash (as a last-resort defensive measure). These workarounds reduce risk but do not fully eliminate the issue without the patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68156",
"url": "https://www.suse.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "SUSE Bug 1255330 for CVE-2025-68156",
"url": "https://bugzilla.suse.com/1255330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2025-68156"
},
{
"cve": "CVE-2026-21720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21720"
}
],
"notes": [
{
"category": "general",
"text": "Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image. If the refresh sits in the 10-slot worker queue longer than three seconds, the handler times out and stops listening for the result, so that goroutine blocks forever trying to send on an unbuffered channel. Sustained traffic with random hashes keeps tripping this timeout, so goroutine count grows linearly, eventually exhausting memory and causing Grafana to crash on some systems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21720",
"url": "https://www.suse.com/security/cve/CVE-2026-21720"
},
{
"category": "external",
"summary": "SUSE Bug 1257349 for CVE-2026-21720",
"url": "https://bugzilla.suse.com/1257349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2026-21720"
},
{
"cve": "CVE-2026-21721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21721"
}
],
"notes": [
{
"category": "general",
"text": "The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permissions:* action. As a result, a user who has permission management rights on one dashboard can read and modify permissions on other dashboards. This is an organization-internal privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21721",
"url": "https://www.suse.com/security/cve/CVE-2026-21721"
},
{
"category": "external",
"summary": "SUSE Bug 1257337 for CVE-2026-21721",
"url": "https://bugzilla.suse.com/1257337"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "important"
}
],
"title": "CVE-2026-21721"
},
{
"cve": "CVE-2026-21722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21722"
}
],
"notes": [
{
"category": "general",
"text": "Public dashboards with annotations enabled did not limit their annotation timerange to the locked timerange of the public dashboard. This means one could read the entire history of annotations visible on the specific dashboard, even those outside the locked timerange.\n\nThis did not leak any annotations that would not otherwise be visible on the public dashboard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21722",
"url": "https://www.suse.com/security/cve/CVE-2026-21722"
},
{
"category": "external",
"summary": "SUSE Bug 1258136 for CVE-2026-21722",
"url": "https://bugzilla.suse.com/1258136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.aarch64",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.s390x",
"openSUSE Leap 16.0:grafana-11.6.11-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-29T16:12:10Z",
"details": "moderate"
}
],
"title": "CVE-2026-21722"
}
]
}
RHSA-2025:14090
Vulnerability from csaf_redhat - Published: 2025-08-19 11:33 - Updated: 2026-06-17 03:59Summary
Red Hat Security Advisory: Red Hat Developer Hub 1.7.0 release.
Severity
Important
Notes
Topic: Red Hat Developer Hub 1.7.0 has been released.
Details: Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
An insufficient access control vulnerability was found in the Red Hat Developer Hub rhdh/rhdh-hub-rhel9 container image. The Red Hat Developer Hub cluster admin/user, who has standard user access to the cluster, and the Red Hat Developer Hub namespace, can access the rhdh/rhdh-hub-rhel9 container image and modify the image's content. This issue affects the confidentiality and integrity of the data, and any changes made are not permanent, as they reset after the pod restarts.
6.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the npm pbkdf2 library, allowing signature spoofing. When executing in javascript engines other than Nodejs or Nodejs when importing pbkdf2/browser, certain algorithms will silently fail and return invalid data. The return values are predictable, which undermines the security guarantees of the package.
8.1 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Threats
Impact
Important
A denial of service vulnerability was found in the Multer NPM library. This vulnerability allows an attacker to trigger a denial of service (DoS) by sending a malformed multi-part upload request. This request causes an unhandled exception, resulting in a process crash.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in proxy host matching. This vulnerability allows improper bypassing of proxy settings via manipulating an IPv6 zone ID, causing unintended matches against the NO_PROXY environment variable.
4.4 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found http-proxy-middleware. This vulnerability affects http-proxy-middleware versions where the writeBody function can be called twice due to improper control flow handling.
4.0 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in http-proxy-middleware. The issue occurs because the fixRequestBody function proceeds even when bodyParser has failed, which could lead to unintended behavior.
4.0 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in tar-fs. This vulnerability allows files to be written outside the intended extraction directory via specially crafted tar archives. The issue arises from insufficient path validation during tarball extraction, potentially enabling path traversal attacks that can overwrite arbitrary files on the system.
7.3 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Important
An unhandled exception flaw was found in multer. This issue allows an attacker to trigger an application level denial of service by sending an upload file request with an empty string field name, which triggers an exception in processing that is not properly handled. This issue will lead to a program crash.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A signature verification flaw was found in the npm @node-saml/node-saml library. This flaw allows an attacker who has access to a validly signed document from the identity provider (IdP) to alter the content of the document, modify the details within the document, and have the modifications be accepted.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 | — |
Workaround
|
Threats
Impact
Important
References
80 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.7.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14090",
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22870",
"url": "https://access.redhat.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-32996",
"url": "https://access.redhat.com/security/cve/CVE-2025-32996"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-32997",
"url": "https://access.redhat.com/security/cve/CVE-2025-32997"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-48387",
"url": "https://access.redhat.com/security/cve/CVE-2025-48387"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-48997",
"url": "https://access.redhat.com/security/cve/CVE-2025-48997"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-5417",
"url": "https://access.redhat.com/security/cve/CVE-2025-5417"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-54419",
"url": "https://access.redhat.com/security/cve/CVE-2025-54419"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6545",
"url": "https://access.redhat.com/security/cve/CVE-2025-6545"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-7338",
"url": "https://access.redhat.com/security/cve/CVE-2025-7338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHIDP-6469",
"url": "https://issues.redhat.com/browse/RHIDP-6469"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHIDP-6470",
"url": "https://issues.redhat.com/browse/RHIDP-6470"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHIDP-6937",
"url": "https://issues.redhat.com/browse/RHIDP-6937"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14090.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Developer Hub 1.7.0 release.",
"tracking": {
"current_release_date": "2026-06-17T03:59:22+00:00",
"generator": {
"date": "2026-06-17T03:59:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2025:14090",
"initial_release_date": "2025-08-19T11:33:06+00:00",
"revision_history": [
{
"date": "2025-08-19T11:33:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-19T11:33:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-17T03:59:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.7",
"product": {
"name": "Red Hat Developer Hub 1.7",
"product_id": "Red Hat Developer Hub 1.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.7::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3Aaa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.7.0-1754936470"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.7.0-1754935808"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3A7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.7.0-1754942441"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64 as a component of Red Hat Developer Hub 1.7",
"product_id": "Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64 as a component of Red Hat Developer Hub 1.7",
"product_id": "Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64 as a component of Red Hat Developer Hub 1.7",
"product_id": "Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5417",
"cwe": {
"id": "CWE-266",
"name": "Incorrect Privilege Assignment"
},
"discovery_date": "2025-05-31T22:35:41+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2369602"
}
],
"notes": [
{
"category": "description",
"text": "An insufficient access control vulnerability was found in the Red Hat\nDeveloper Hub rhdh/rhdh-hub-rhel9 container image. The Red Hat Developer Hub cluster admin/user, who has standard user access to the cluster, and the Red Hat Developer Hub namespace, can access the\nrhdh/rhdh-hub-rhel9 container image and modify the image\u0027s content. This issue affects the confidentiality and integrity of the data, and any changes made are not permanent, as they reset after the pod restarts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rhdh: Red Hat Developer Hub user permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Developer Hub 1.6 is not affected by this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5417"
},
{
"category": "external",
"summary": "RHBZ#2369602",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369602"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5417",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5417"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5417",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5417"
}
],
"release_date": "2025-08-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Red Hat Developer Hub 1.5 contains mitigation guidelines present at https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.5/html/configuring_red_hat_developer_hub/readonlyrootfilesystem",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rhdh: Red Hat Developer Hub user permissions"
},
{
"cve": "CVE-2025-6545",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2025-06-23T19:00:51.575615+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2374370"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the npm pbkdf2 library, allowing signature spoofing. When executing in javascript engines other than Nodejs or Nodejs when importing pbkdf2/browser, certain algorithms will silently fail and return invalid data. The return values are predictable, which undermines the security guarantees of the package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pbkdf2: pbkdf2 silently returns predictable key material",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated important because it causes the pbkdf2 module to quietly return weak or zero-filled keys when certain algorithm names are used incorrectly in browsers or bundled code, this causes the function to silently return a predictable value (such as a zero-filled buffer or uninitialized memory) instead of a securely derived key, completely undermining the confidentiality and integrity of any cryptographic operation where attackers could guess or reuse these keys to access or change protected data.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6545"
},
{
"category": "external",
"summary": "RHBZ#2374370",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374370"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6545",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6545"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6545",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6545"
},
{
"category": "external",
"summary": "https://github.com/browserify/pbkdf2/commit/9699045c37a07f8319cfb8d44e2ff4252d7a7078",
"url": "https://github.com/browserify/pbkdf2/commit/9699045c37a07f8319cfb8d44e2ff4252d7a7078"
},
{
"category": "external",
"summary": "https://github.com/browserify/pbkdf2/commit/e3102a8cd4830a3ac85cd0dd011cc002fdde33bb",
"url": "https://github.com/browserify/pbkdf2/commit/e3102a8cd4830a3ac85cd0dd011cc002fdde33bb"
},
{
"category": "external",
"summary": "https://github.com/browserify/pbkdf2/security/advisories/GHSA-h7cp-r72f-jxh6",
"url": "https://github.com/browserify/pbkdf2/security/advisories/GHSA-h7cp-r72f-jxh6"
}
],
"release_date": "2025-06-23T18:41:18.771000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pbkdf2: pbkdf2 silently returns predictable key material"
},
{
"cve": "CVE-2025-7338",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2025-07-17T16:00:55.704118+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2381726"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Multer NPM library. This vulnerability allows an attacker to trigger a denial of service (DoS) by sending a malformed multi-part upload request. This request causes an unhandled exception, resulting in a process crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "multer: Multer Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7338"
},
{
"category": "external",
"summary": "RHBZ#2381726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2381726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7338"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/commit/adfeaf669f0e7fe953eab191a762164a452d143b",
"url": "https://github.com/expressjs/multer/commit/adfeaf669f0e7fe953eab191a762164a452d143b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/security/advisories/GHSA-fjgf-rc76-4x9p",
"url": "https://github.com/expressjs/multer/security/advisories/GHSA-fjgf-rc76-4x9p"
}
],
"release_date": "2025-07-17T15:26:45.427000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "multer: Multer Denial of Service"
},
{
"cve": "CVE-2025-22870",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2025-03-12T19:00:59.178193+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2351766"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in proxy host matching. This vulnerability allows improper bypassing of proxy settings via manipulating an IPv6 zone ID, causing unintended matches against the NO_PROXY environment variable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "RHBZ#2351766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2351766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22870",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22870"
},
{
"category": "external",
"summary": "https://go.dev/cl/654697",
"url": "https://go.dev/cl/654697"
},
{
"category": "external",
"summary": "https://go.dev/issue/71984",
"url": "https://go.dev/issue/71984"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3503",
"url": "https://pkg.go.dev/vuln/GO-2025-3503"
}
],
"release_date": "2025-03-12T18:27:59.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net"
},
{
"cve": "CVE-2025-32996",
"cwe": {
"id": "CWE-670",
"name": "Always-Incorrect Control Flow Implementation"
},
"discovery_date": "2025-04-15T03:00:44.384011+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2359627"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found http-proxy-middleware. This vulnerability affects http-proxy-middleware versions where the writeBody function can be called twice due to improper control flow handling.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Always-Incorrect Control Flow Implementation in http-proxy-middleware",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32996"
},
{
"category": "external",
"summary": "RHBZ#2359627",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359627"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32996"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32996",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32996"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/020976044d113fc0bcbbaf995e91d05e2829a145",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/020976044d113fc0bcbbaf995e91d05e2829a145"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/pull/1089",
"url": "https://github.com/chimurai/http-proxy-middleware/pull/1089"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.8",
"url": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.8"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.4",
"url": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.4"
}
],
"release_date": "2025-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Always-Incorrect Control Flow Implementation in http-proxy-middleware"
},
{
"cve": "CVE-2025-32997",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"discovery_date": "2025-04-15T03:00:47.160071+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2359628"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in http-proxy-middleware. The issue occurs because the fixRequestBody function proceeds even when bodyParser has failed, which could lead to unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Improper Check for Unusual or Exceptional Conditions in http-proxy-middleware",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32997"
},
{
"category": "external",
"summary": "RHBZ#2359628",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359628"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32997"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32997",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32997"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/1bdccbeec243850f1d2bb50ea0ff2151e725d67e",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/1bdccbeec243850f1d2bb50ea0ff2151e725d67e"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/pull/1096",
"url": "https://github.com/chimurai/http-proxy-middleware/pull/1096"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.9",
"url": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v2.0.9"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.5",
"url": "https://github.com/chimurai/http-proxy-middleware/releases/tag/v3.0.5"
}
],
"release_date": "2025-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Improper Check for Unusual or Exceptional Conditions in http-proxy-middleware"
},
{
"cve": "CVE-2025-48387",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-02T20:00:45.526571+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2369875"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in tar-fs. This vulnerability allows files to be written outside the intended extraction directory via specially crafted tar archives. The issue arises from insufficient path validation during tarball extraction, potentially enabling path traversal attacks that can overwrite arbitrary files on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tar-fs: tar-fs has issue where extract can write outside the specified dir with a specific tarball",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in tar-fs is Important not a moderate flaw, primarily due to its ability to bypass directory confinement during tarball extraction. The core issue\u2014path traversal via crafted archive entries\u2014allows attackers to write files outside the intended extraction directory, potentially overwriting system files, configuration files, or injecting malicious scripts into sensitive locations. Unlike moderate flaws that may require specific conditions or user interaction to exploit, this vulnerability can be triggered automatically in server-side environments that extract user-supplied tar files (e.g., CI/CD systems, deployment tools, or file upload handlers). Its exploitation could lead to remote code execution, privilege escalation, or denial of service, depending on the context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48387"
},
{
"category": "external",
"summary": "RHBZ#2369875",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369875"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48387",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48387"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48387",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48387"
},
{
"category": "external",
"summary": "https://github.com/mafintosh/tar-fs/commit/647447b572bc135c41035e82ca7b894f02b17f0f",
"url": "https://github.com/mafintosh/tar-fs/commit/647447b572bc135c41035e82ca7b894f02b17f0f"
},
{
"category": "external",
"summary": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-8cj5-5rvv-wf4v",
"url": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-8cj5-5rvv-wf4v"
}
],
"release_date": "2025-06-02T19:20:18.220000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation is either unavailable or does not meet Red Hat Product Security standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tar-fs: tar-fs has issue where extract can write outside the specified dir with a specific tarball"
},
{
"cve": "CVE-2025-48997",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2025-06-03T19:01:06.246004+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370084"
}
],
"notes": [
{
"category": "description",
"text": "An unhandled exception flaw was found in multer. This issue allows an attacker to trigger an application level denial of service by sending an upload file request with an empty string field name, which triggers an exception in processing that is not properly handled. This issue will lead to a program crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "multer: Multer vulnerable to Denial of Service via unhandled exception",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The denial of service impact is limited to the program that integrates multer. The host operating system is not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48997"
},
{
"category": "external",
"summary": "RHBZ#2370084",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370084"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48997"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48997",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48997"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/commit/35a3272b611945155e046dd5cef11088587635e9",
"url": "https://github.com/expressjs/multer/commit/35a3272b611945155e046dd5cef11088587635e9"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/issues/1233",
"url": "https://github.com/expressjs/multer/issues/1233"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/pull/1256",
"url": "https://github.com/expressjs/multer/pull/1256"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/security/advisories/GHSA-g5hg-p3ph-g8qg",
"url": "https://github.com/expressjs/multer/security/advisories/GHSA-g5hg-p3ph-g8qg"
}
],
"release_date": "2025-06-03T18:21:59.527000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "multer: Multer vulnerable to Denial of Service via unhandled exception"
},
{
"cve": "CVE-2025-54419",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2025-07-28T20:02:41.635540+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2384049"
}
],
"notes": [
{
"category": "description",
"text": "A signature verification flaw was found in the npm @node-saml/node-saml library. This flaw allows an attacker who has access to a validly signed document from the identity provider (IdP) to alter the content of the document, modify the details within the document, and have the modifications be accepted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@node-saml/node-saml: Node-SAML Signature Verification Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a Important impact authn-bypass, not a Moderate bug, because it breaks the core trust boundary of SAML: the service provider (SP) makes authorization decisions based on an assertion it believes is protected by the IdP\u2019s XML signature. In @node-saml/node-saml \u22645.0.1, the library verifies the signature over one part of the response but then parses/uses fields from the original, unsigned document, a classic signature-wrapping/mismatch flaw. An attacker who possesses any validly signed SAML response (e.g., their own login, a captured response, or one from a lower-privileged account) can alter critical elements\u2014such as the Subject/NameID (e.g., drop a character to map to a different user), group/role attributes, AuthnContext, or Conditions\u2014without invalidating the signature, and the SP will accept the modified values. That enables account takeover, privilege escalation, MFA/step-up bypass (via AuthnContext changes), and policy circumvention across every SP relying on this library. The only prerequisite is access to a single signed response; no IdP compromise is required.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-54419"
},
{
"category": "external",
"summary": "RHBZ#2384049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2384049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-54419",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54419"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-54419",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54419"
},
{
"category": "external",
"summary": "https://github.com/node-saml/node-saml/commit/31ead9411ebc3e2385086fa9149b6c17732bca10",
"url": "https://github.com/node-saml/node-saml/commit/31ead9411ebc3e2385086fa9149b6c17732bca10"
},
{
"category": "external",
"summary": "https://github.com/node-saml/node-saml/releases/tag/v5.1.0",
"url": "https://github.com/node-saml/node-saml/releases/tag/v5.1.0"
},
{
"category": "external",
"summary": "https://github.com/node-saml/node-saml/security/advisories/GHSA-4mxg-3p6v-xgq3",
"url": "https://github.com/node-saml/node-saml/security/advisories/GHSA-4mxg-3p6v-xgq3"
}
],
"release_date": "2025-07-28T19:47:46.584000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T11:33:06+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:aa3c5b50c65aee51b932fafcbf479ce54f15496cffc2744860bd9e135cce815c_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:7dad33bce18ec8417e9345ce8cdd39f3c9bfd637cecc8ce6750fa3e5279dc06b_amd64",
"Red Hat Developer Hub 1.7:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:72beabd2760976369736af8c22388b030603f9d503020aa581f4b8ec1c50c740_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@node-saml/node-saml: Node-SAML Signature Verification Vulnerability"
}
]
}
RHSA-2025:7616
Vulnerability from csaf_redhat - Published: 2025-05-14 14:49 - Updated: 2026-06-22 01:47Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update
Severity
Important
Notes
Topic: Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.18.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details: Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
108 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in proxy host matching. This vulnerability allows improper bypassing of proxy settings via manipulating an IPv6 zone ID, causing unintended matches against the NO_PROXY environment variable.
4.4 (Medium)
Affected products
Fixed
108 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
21 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.18.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:7616",
"url": "https://access.redhat.com/errata/RHSA-2025:7616"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2351766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2351766"
},
{
"category": "external",
"summary": "DFBUGS-1677",
"url": "https://issues.redhat.com/browse/DFBUGS-1677"
},
{
"category": "external",
"summary": "DFBUGS-2330",
"url": "https://issues.redhat.com/browse/DFBUGS-2330"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7616.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update",
"tracking": {
"current_release_date": "2026-06-22T01:47:47+00:00",
"generator": {
"date": "2026-06-22T01:47:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2025:7616",
"initial_release_date": "2025-05-14T14:49:22+00:00",
"revision_history": [
{
"date": "2025-05-14T14:49:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-14T14:49:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-22T01:47:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.18 for RHEL 9",
"product": {
"name": "RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.3-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.3-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.3-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.3-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.3-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.3-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-14T14:49:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7616"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22870",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2025-03-12T19:00:59.178193+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2351766"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in proxy host matching. This vulnerability allows improper bypassing of proxy settings via manipulating an IPv6 zone ID, causing unintended matches against the NO_PROXY environment variable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "RHBZ#2351766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2351766"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22870",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22870"
},
{
"category": "external",
"summary": "https://go.dev/cl/654697",
"url": "https://go.dev/cl/654697"
},
{
"category": "external",
"summary": "https://go.dev/issue/71984",
"url": "https://go.dev/issue/71984"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3503",
"url": "https://pkg.go.dev/vuln/GO-2025-3503"
}
],
"release_date": "2025-03-12T18:27:59.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-14T14:49:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7616"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:3136e58c7368b1b9a295cf5773764b8e293d6324bbd05260065bf99daa947b2b_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:cabb40ef208de9349c54c809ff80a8ee1cb6bcc9fd5f3e2b24f4acb837ab6229_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:e3e446b3966b18ced726f34bc805269af9ccbaa5c502af0c8ebd912579c3b786_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0337208d961a29afd5fef0b4272f753d00acb00da7e29dc9b91aa48b4cc8e79d_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:32dfa181892e0099f1b0a641b89f7179b8539541f9c3aa8270fd3fd6f53af0f0_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:48f8800dd95f12cf3e4846646da7b2d4658810ca7e54e711c9e9b738f98b8386_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:86fcf3ccfb9a8f9ac98f7b874de0bae433b9e2d6eea67cd8fed840b7b9b70411_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6b8ae0dfc15bf2b7c52a41dfac42c221b5630783a35000ab00303f2dfb371e95_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:845556d5d8fc2b5e56424219d99d07db672e352cd5d9801d2fec6d13312b99dc_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:fc167c03fcd29f8e1a41ea9f6b4dc5803c4f68d8bfff3cbd983734b227b80f2b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:181a7ce1056d741b07baeb66146f4dbc623131047c2424b3b66c4e98bcdedf31_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:333f3c838a1b8a0c5d8a528bc249f02f8bb016ba225970acac6bd23102868dad_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:498767d6cbd4ad191d5d9e36a0d13710891828ab016d3723e5c88eba74b039f8_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:e94338a1b7186d2dd35fb76a1e69ac47b74c90317e5962d71a0bc3d2ccf02c93_arm64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:163dc8947f4a44c40ca33b054a98bd8a232cbb94836054451610ded06ebae183_amd64",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:2488f57417b3113bdc6143401aaf7d7d7054e6c56685d9d8f88a9a48cc8323d8_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:e6f3079508f74bde0016ab97316c270ec99192447a001ef5dbf9d6b683a0c4e7_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:24f76ffd03f581af581ec5fee5f3aeb8a925f9c7a7aba54f298b427af0a578d0_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:32c51da4f1081e65033e2fabbfebffe75fdbee613c92642b2348223f1652d65f_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:43a07d71a922a0f97b1699be082c6069e91ff3ee83bc92f340c50dfa992d1c24_arm64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:8a0ba5e32d8b8b594a7d848a2e0446d81b6564f48abc6dcec82e26c355926e79_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:6fd3c48b553ff95956edb4263ef62a51aeccbb977fe2666805477edd32ef6050_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:9d238b532036351dfda5fe50a5dfb602683c2f595bcbf5359dbea989524c5af1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:ea8c9a6dc2a691b299bcc71b6045a24dee57e15860aadb6cadbcb33e02289c6f_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:1bd6244f93fd2eb2beaada8cbb39382434fbde3f75a0940690977058acdb302c_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:84d32f0a9c87ce4a4e61216f927093054e6fd76eed8ed7ab77e8fa43f989d2d2_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:f72f0e4fddc76a887adb68ba6dacb1ffcea2a461fbda9ae491311f291201eeb1_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9efc9b68956feb2b873afd78722b7a2bd404146395b85a205b6b26e8f810b54a_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:9f644233139872375b89682eb561a23b2be62de5f51fbdf473e097646bfa9133_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ad55e4b974467482eb8390f6698685f4f5a6c6429405a01a236e4c3cba66ba46_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:ae1d756e9bc99dc741b42d42363ce4f8e9ae8348ec2356d90150affa63b095f4_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:3f5ef231d093201e521f77707aeeba3168ed925c03c9c5e91d4a00d84141c3bd_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:586640692510325b32a170005465737f0b9bf19b7217a86af231b9a9a369848b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:af5418d3482960256f6d3468e05c3f935507ad67e9491c83040605a62c8cbc32_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:0be247b6097d0733e121da704293bff3efb7b5efa3b26e3d6f3893ccc667bb66_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:ab31a5298a7b1a751aa9271bed082a8c82fcd9949c71c4c5b4c72a6cedc0c3bb_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:baf0e6164997bab871659776f6514f034285c33ccb0626e6965c90781865517c_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:6d4c35b8257f0c2a2d6809efc909df2e28ade7acabd17753a4613b9a5470b282_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:8b0e8254826bae1e9498e79f26577559c9a8a7c62342312cfa0f1ac57dd93c9b_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:c399b533ee87712e935a9d10ae122ac5b39d9bc562b1b338a5a01518c1e21857_arm64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:f7bafab78a50be31ae0948f0d5390d7887bd92ca6c49021cd4ca5cf86b987793_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:31431007988944a1da4dc50dfa232c2007e74616ee44aeaa491f054d9af8c827_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:39f7e57099822c1f9254800a5aaacb0c28a7718510445e5e437bb9df6e11cb55_amd64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:7c661e7662740c35e93981fb92d357d2226db652cca4723ea9540d24c09c2885_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:e5b13931d62d51189437fc80d3745c1387b6853114451e28d600c2f647562eac_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:d4efb5f695c7484def399f77e5d26f96eeb54432ca9904d66c34d6ed24b2e90d_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:f8b6286fd5c91ba5c9ed19e8f1dc0cc802a32a2147632a8a8785ca9fa0ff6572_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:fe6e48bed591c0970517991307c38a9792c70f2f6ba297a8d0c12e47ec8405d0_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:2a76173d4f5034f926defd608826742b3c82cd1ab3d5cc020b79b90defd88fd5_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:5e7bc2ef9a3cff605d287d483a583a9883126de60e2d0d67f02d120ac0e4e8d0_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:ec3373acabee35d73d901e8ee96ecc3deb9130a83b40ceba6a9e5b9c030c8451_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:0e4d9a3314f381a353f3f50bf5ffcb32b4f36fd7300112c334f488f4d31b5aaa_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:5563fa6b565e4e48e30f533523df051b042de401bc10a37ce3c6128b8b74953b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:ef9d108fc25d6d0d8fe3482db20e61c31bcf15a26f84cb92a133936e53230c51_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:36a6769dc75e339fc6a2b7943e7dcc9bcb23c98aabe187908f666d91a0ee4827_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:48a353635d9cc910905232d020d68a27a5261f3c345536ef7b4847283763ffbc_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:7f74adc5a0429752a11b48d09251ea0951cfb6e36cbf453a93b195b42dbd5416_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:cb7d8a3e134f12b9e2401667e8fe63354d032e3a5399b5edc3d0d4b24049740b_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:4042d640b669c720f1dc65f539597016c8be5836598f981fb6de28803d1dff39_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:6bf7b44ef5683480bfecb5a6de02cb1b6e9efd520c4023d2cd40762da4a53f18_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:7788edef796960c369a814be39c3bbe375c26bff0f30824e5d449891d878c1ce_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:fccdbf90b64c3324896b6838800bcb4b49d1d3d6b10ab0fef422c5b0da2537fe_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:7619ce50f2a5e2a95e4d3f70e9d49831e0943022b965b9d20303a65edf1358f9_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:83be5c366f1e9362792f5dc8d2dd47073ef74147550dc47d2636b01d307266aa_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:e3a9daadec91d0e1d77d4556ac3222827de717c279ded94e80c3eaff8cb6c98b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:5d2b843e0e18758831e3839fc8699b32f697535a0755f7d2125e419ebc337f4c_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:b1507289ab7d44d2296aa6ae964b13664af1bc65d08e3ea41df4134127dc8a60_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:cd3983e0c59ced29d435eb376eb0b0b1428ed1da4f890156b785a5211ac644ea_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:10f6c974682876c4b8bc910a529df639637d5205e0563b78a148d6e7768059db_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:9d9d2b247a2ae80747d5a4d996292c6d2bea496d18894d6fc7e33c67ad80a416_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:aa0637804ed8fed74e3b586696ac2e0b52e77a9b84ee155d9f9e3819bcd4be3f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7868c99cce41b426406f53f319e7ede0f2efa939c70d6e47b989bc6ee73afa9b_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7c266e633c5a236ea81da8155ae1772068bf5c13de17d0b7e780db7d483b6a0a_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:c0e93d4d1056322962ccbb2c6a5964095e61304df00bab91c7b8434ed149b9d2_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:edcd893e223c4f24ce91a22627db05ca226afe10e587e89038dfaa361be6c717_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:3723263dd1f422c3ad40d90d08ee4e7303e302cae71569c088791b8e39b4ecea_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:5b572407317c9d2fcd0fefb90688ca502008e44aca6bacad84a50b0ed1817379_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:91288d36af794c7473019cf50e29aa829174f12e5afbb52fe771e2f3c75a2620_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:b49eb0ac2849a2db44a5897da29e5d4d40d39d0c11b0cc49509a77e3ad92fe54_arm64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:21bfd4fd23c63ef4808dc4a4964737b0c870e6caef822ff58812a354fa431322_s390x",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:42aaf378c836a548a35f1418c4077c59b2f4e36d3c76cb25c1a25ca6021d2f10_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:f78cfa89d05c327607d44dbc374f10998e78cdc8666879fa3ee6187a5189461c_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:11a4a3b4232c94d2d8d155cfc507f01e93ba5b2cf1099b6beaa77acbea229e31_ppc64le",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:338827e42a14fb871e82a2d2c225a9bbb8b60d495b9aae47db53cba1e76952c5_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:c3f4201d7361bf5431ffb5c5524f6b1360ade034563eff5136d2644001db504a_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:0724d4bf20a91c7973bcb0529edeec52feb507daa10b381b99dda21403655885_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:11d09156fbd8134af38bff59da972dac2ecdb8889b5643aba4cf57f0ef5b3f2e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:52b074be712d8744e7a6ff75191b5bb03a4d2f192ff226a7844588a035992aa6_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:ef482bc00c952ea8490536d89f0864878a5e969487b37494fc1a2a34d2cb9030_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:0344cfd0f3ed806eb3e7cfc3d51382481c054fe928227b790644d081437c40b9_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:be0abe9f1da1cd664e78fbb0a730f25063d7d99df002f73835aff338407e3d1c_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:c1efd05bfc52c9bfd87adce32b288ab0dfd67131768105b7a34112ba56ab67f0_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:27f2d847a70aab5987b05763a3dcdfed243ead9152032a084d49b5d806a5e2fd_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:8d5c53df02d13f8a3bfa3551e0ff8991288671f52ce612a185a21e4a91f30f71_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:ef657d958588c924ac37735a65170c771f28cffefb2b3aa19cc64ea4b6cbd1f9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:0b01e41c282812812cb34ef4f734558206f89f0650203b38abf7e5d6a689b82b_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:524044401b9bd60f8f0666b3acc69b236010a72a4ca76e7fa5d37a6ea0fa56d9_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:f40b72bcc1b662ea6637db9c67c2941536c6a73e82a9cde60745ac4065a87d06_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2d2b167bb25bde9411f3c5842d53b3d306c74158cae54374e85f20414531bced_arm64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:8d1ac2ec2f347ab1a70044a689f8c8d2449e829021d5dbfe14e8a132c94493a9_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f2ad46e771e322e7b168220802f651c365638b869d92db9e6a5dc307f06ebd68_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:f364a09af7c8927b0dcc99f49f65d0133234b454738970b1a3dd5bc7635b1c7f_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:4c363f81dd1b34fa2f05b4a557bad6b1a43e4e784a6f5b330950cec1e8f4b135_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:7e4daba24e2ac197b975b93d23f2b45384fae54ae779baba4cd993fb9b32f5d9_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:80c9b75507caf03dad1f57f43d4a9a295e880687047a8913545c6e7e79454825_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:21f3e5401f64ff2e3bf806ff42e92236a44513ffd3422214a8bba72101961d28_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:37b6f0b1f5df6582d27d915f78c6209d663c2153c119efbb6e0a86a2130bb9a5_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:4dbf5b50fa735c19ab27b1ae7f794f4cd311eb4c3f7581a661e1d4bd00b1159a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…