Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-61726 (GCVE-0-2025-61726)
Vulnerability from cvelistv5 – Published: 2026-01-28 19:30 – Updated: 2026-07-01 12:04| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/url |
Affected:
0 , < 1.24.12
(semver)
Affected: 1.25.0 , < 1.25.6 (semver) |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 10 |
cpe:/a:redhat:ansible_automation_platform:2.6::el10 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10 |
|
| Red Hat | Red Hat Enterprise Linux Server (v. 7 ELS) |
cpe:/o:redhat:rhel_els:7 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 |
cpe:/a:redhat:ansible_automation_platform:2.4::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 |
cpe:/a:redhat:ansible_automation_platform:2.5::el8 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
cpe:/a:redhat:openshift:4.12::el8 cpe:/a:redhat:openshift:4.12::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
cpe:/a:redhat:openshift:4.16::el8 cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
cpe:/a:redhat:openshift:4.17::el8 cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
cpe:/a:redhat:openshift:4.18::el8 cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.4::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.5::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 for RHEL 9 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9 |
|
| Red Hat | Cryostat 4 on RHEL 9 |
cpe:/a:redhat:cryostat:4::el9 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.19 |
cpe:/a:redhat:openshift:4.19::el8 cpe:/a:redhat:openshift:4.19::el9 |
|
| Red Hat | Red Hat Satellite 6.18 for RHEL 9 |
cpe:/a:redhat:satellite:6.18::el9 cpe:/a:redhat:satellite_capsule:6.18::el9 cpe:/a:redhat:satellite_utils:6.18::el9 |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.1 cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v. 8.2) |
cpe:/a:redhat:rhel_aus:8.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v.8.4) |
cpe:/a:redhat:rhel_aus:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4) |
cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream AUS (v.8.6) |
cpe:/a:redhat:rhel_aus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.6) |
cpe:/a:redhat:rhel_e4s:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.6) |
cpe:/a:redhat:rhel_tus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.8) |
cpe:/a:redhat:rhel_e4s:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.8) |
cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.0) |
cpe:/a:redhat:rhel_e4s:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.9.2) |
cpe:/a:redhat:rhel_e4s:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 10) |
cpe:/o:redhat:enterprise_linux:10.1 |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::crb |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 9) |
cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | Cert Manager support for Red Hat OpenShift release 1.17 |
cpe:/a:redhat:cert_manager:1.17::el9 |
|
| Red Hat | Custom Metric Autoscaler 2.19 |
cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9 |
|
| Red Hat | DevWorkspace Operator 0.4 |
cpe:/a:redhat:devworkspace:0.40::el9 |
|
| Red Hat | HawtIO HawtIO 4.3.1 |
cpe:/a:redhat:apache_camel_hawtio:4.3::el9 |
|
| Red Hat | HawtIO HawtIO 4.4.0 |
cpe:/a:redhat:apache_camel_hawtio:4.4::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.0 |
cpe:/a:redhat:logging:6.0::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.2 |
cpe:/a:redhat:logging:6.2::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.3 |
cpe:/a:redhat:logging:6.3::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift 6.4 |
cpe:/a:redhat:logging:6.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.4.5 |
cpe:/a:redhat:multicluster_globalhub:1.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.5.4 |
cpe:/a:redhat:multicluster_globalhub:1.5::el9 |
|
| Red Hat | Multicluster Global Hub 1.6.2 |
cpe:/a:redhat:multicluster_globalhub:1.6::el9 |
|
| Red Hat | Network Observability (NETOBSERV) 1.11.2 |
cpe:/a:redhat:network_observ_optr:1.11::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.4 |
cpe:/a:redhat:openshift_api_data_protection:1.4::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.5 |
cpe:/a:redhat:openshift_api_data_protection:1.5::el9 |
|
| Red Hat | OpenShift Compliance Operator 1 |
cpe:/a:redhat:openshift_compliance_operator:1::el9 |
|
| Red Hat | OpenShift Developer Tools and Services 1.6.2 |
cpe:/a:redhat:source_to_image:1.6::el8 |
|
| Red Hat | OpenShift File Integrity Operator - FIO 1 |
cpe:/a:redhat:openshift_file_integrity_operator:1::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.13 |
cpe:/a:redhat:acm:2.13::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.14 |
cpe:/a:redhat:acm:2.14::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.15 |
cpe:/a:redhat:acm:2.15::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.8 |
cpe:/a:redhat:advanced_cluster_security:4.8::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Ansible Automation Platform 2.6 |
cpe:/a:redhat:ansible_automation_platform:2.6::el9 |
|
| Red Hat | Red Hat Developer Hub 1.8 |
cpe:/a:redhat:rhdh:1.8::el9 |
|
| Red Hat | Red Hat Hardened Images |
cpe:/a:redhat:hummingbird:1 |
|
| Red Hat | Red Hat Lightspeed (formerly Insights) for Runtimes 1 |
cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9 |
|
| Red Hat | Red Hat OpenShift AI 2.16 |
cpe:/a:redhat:openshift_ai:2.16::el8 |
|
| Red Hat | Red Hat OpenShift AI 2.25 |
cpe:/a:redhat:openshift_ai:2.25::el9 |
|
| Red Hat | Red Hat OpenShift AI 3.3 |
cpe:/a:redhat:openshift_ai:3.3::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.6.5 |
cpe:/a:redhat:openshift_builds:1.6::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.20 |
cpe:/a:redhat:openshift:4.20::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces (RHOSDS) 3.26 |
cpe:/a:redhat:openshift_devspaces:3.26::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces 3.27 |
cpe:/a:redhat:openshift_devspaces:3.27::el9 |
|
| Red Hat | Red Hat OpenShift GitOps 1.17 |
cpe:/a:redhat:openshift_gitops:1.17::el8 |
|
| Red Hat | Red Hat OpenShift GitOps 1.18 |
cpe:/a:redhat:openshift_gitops:1.18::el8 |
|
| Red Hat | Red Hat OpenShift GitOps 1.19 |
cpe:/a:redhat:openshift_gitops:1.19::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 2.6 |
cpe:/a:redhat:service_mesh:2.6::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.0 |
cpe:/a:redhat:service_mesh:3.0::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.1 |
cpe:/a:redhat:service_mesh:3.1::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.2 |
cpe:/a:redhat:service_mesh:3.2::el9 |
|
| Red Hat | Red Hat OpenShift distributed tracing 3.9.3 |
cpe:/a:redhat:openshift_distributed_tracing:3.9::el9 |
|
| Red Hat | Red Hat OpenStack Services on OpenShift 18 |
cpe:/a:redhat:openstack:18.0::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.18 |
cpe:/a:redhat:openshift_data_foundation:4.18::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.19 |
cpe:/a:redhat:openshift_data_foundation:4.19::el9 |
|
| Red Hat | Red Hat Quay 3.10 |
cpe:/a:redhat:quay:3.10::el8 |
|
| Red Hat | Red Hat Quay 3.12 |
cpe:/a:redhat:quay:3.12::el8 |
|
| Red Hat | Red Hat Quay 3.14 |
cpe:/a:redhat:quay:3.14::el8 |
|
| Red Hat | Red Hat Quay 3.15 |
cpe:/a:redhat:quay:3.15::el8 |
|
| Red Hat | Red Hat Quay 3.16 |
cpe:/a:redhat:quay:3.16::el9 |
|
| Red Hat | Red Hat Quay 3.9 |
cpe:/a:redhat:quay:3.9::el8 |
|
| Red Hat | Red Hat Satellite 6.18 |
cpe:/a:redhat:satellite:6.18::el9 |
|
| Red Hat | Red Hat Trusted Artifact Signer 1.3 |
cpe:/a:redhat:trusted_artifact_signer:1.3::el9 |
|
| Red Hat | Red Hat Update Infrastructure 5 |
cpe:/a:redhat:rhui:5::el9 |
|
| Red Hat | Red Hat Web Terminal 1.11 |
cpe:/a:redhat:webterminal:1.11::el9 |
|
| Red Hat | Red Hat Web Terminal 1.12 |
cpe:/a:redhat:webterminal:1.12::el9 |
|
| Red Hat | Red Hat Web Terminal 1.13 |
cpe:/a:redhat:webterminal:1.13::el9 |
|
| Red Hat | Red Hat Web Terminal 1.14 |
cpe:/a:redhat:webterminal:1.14::el9 |
|
| Red Hat | Red Hat Web Terminal 1.15 |
cpe:/a:redhat:webterminal:1.15::el9 |
|
| Red Hat | Streams for Apache Kafka 3.2.0 |
cpe:/a:redhat:amq_streams:3.2::el9 |
|
| Red Hat | Zero Trust Workload Identity Manager 1 |
cpe:/a:redhat:zero_trust_workload_identity_manager:1.0::el9 |
|
| Red Hat | mirror registry for Red Hat OpenShift 2.0 |
cpe:/a:redhat:mirror_registry:2.0::el8 |
|
| Red Hat | multicluster engine for Kubernetes 2.10 |
cpe:/a:redhat:multicluster_engine:2.10::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.6 |
cpe:/a:redhat:multicluster_engine:2.6::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.7 |
cpe:/a:redhat:multicluster_engine:2.7::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.8 |
cpe:/a:redhat:multicluster_engine:2.8::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.9 |
cpe:/a:redhat:multicluster_engine:2.9::el9 |
|
| Red Hat | Assisted Installer for Red Hat OpenShift Container Platform 2 |
cpe:/a:redhat:assisted_installer:2 |
|
| Red Hat | cert-manager Operator for Red Hat OpenShift |
cpe:/a:redhat:cert_manager:1 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Cryostat 4 |
cpe:/a:redhat:cryostat:4 |
|
| Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift |
cpe:/a:redhat:openshift_custom_metrics_autoscaler:2 |
|
| Red Hat | Deployment Validation Operator |
cpe:/a:redhat:deployment_validator_operator |
|
| Red Hat | External Secrets Operator for Red Hat OpenShift |
cpe:/a:redhat:external_secrets_operator:1 |
|
| Red Hat | ExternalDNS Operator |
cpe:/a:redhat:ext_dns_optr:1 |
|
| Red Hat | Fence Agents Remediation Operator |
cpe:/a:redhat:workload_availability_far:0 |
|
| Red Hat | File Integrity Operator |
cpe:/a:redhat:openshift_file_integrity_operator:1 |
|
| Red Hat | Gatekeeper 3 |
cpe:/a:redhat:gatekeeper:3 |
|
| Red Hat | Logical Volume Manager Storage |
cpe:/a:redhat:lvms:4 |
|
| Red Hat | Machine Deletion Remediation Operator |
cpe:/a:redhat:workload_availability_mdr:0 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | mirror registry for Red Hat OpenShift |
cpe:/a:redhat:mirror_registry:1 |
|
| Red Hat | Multiarch Tuning Operator |
cpe:/a:redhat:multiarch_tuning_operator |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | Node HealthCheck Operator |
cpe:/a:redhat:workload_availability_nhc:0 |
|
| Red Hat | Node Maintenance Operator |
cpe:/a:redhat:workload_availability_nmo:5 |
|
| Red Hat | OpenShift API for Data Protection |
cpe:/a:redhat:openshift_api_data_protection:1 |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | OpenShift Service Mesh 2 |
cpe:/a:redhat:service_mesh:2 |
|
| Red Hat | OpenShift Service Mesh 3 |
cpe:/a:redhat:service_mesh:3 |
|
| Red Hat | Red Hat 3scale API Management Platform 2 |
cpe:/a:redhat:red_hat_3scale_amp:2 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 |
cpe:/a:redhat:acm:2 |
|
| Red Hat | Red Hat AMQ Clients |
cpe:/a:redhat:amq_clients:2023 |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Ceph Storage 5 |
cpe:/a:redhat:ceph_storage:5 |
|
| Red Hat | Red Hat Ceph Storage 6 |
cpe:/a:redhat:ceph_storage:6 |
|
| Red Hat | Red Hat Ceph Storage 7 |
cpe:/a:redhat:ceph_storage:7 |
|
| Red Hat | Red Hat Ceph Storage 8 |
cpe:/a:redhat:ceph_storage:8 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Connectivity Link 1 |
cpe:/a:redhat:connectivity_link:1 |
|
| Red Hat | Red Hat Edge Manager 1 |
cpe:/a:redhat:edge_manager:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift Cluster Manager CLI |
cpe:/a:redhat:openshift_cluster_manager_cli:1 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift distributed tracing 3 |
cpe:/a:redhat:openshift_distributed_tracing:3 |
|
| Red Hat | Red Hat OpenShift for Windows Containers |
cpe:/a:redhat:windows_machine_config |
|
| Red Hat | Red Hat OpenShift on AWS |
cpe:/a:redhat:openshift_service_on_aws:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Service Interconnect 2 |
cpe:/a:redhat:service_interconnect:2 |
|
| Red Hat | Zero Trust Workload Identity Manager - Tech Preview |
cpe:/a:redhat:zero_trust_workload_identity_manager:0 |
|
| Red Hat | Ironic content for Red Hat OpenShift Container Platform 4.17 |
cpe:/a:redhat:openshift_ironic:4.17::el9 |
|
| Red Hat | Ironic content for Red Hat OpenShift Container Platform 4.18 |
cpe:/a:redhat:openshift_ironic:4.18::el9 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift |
cpe:/a:redhat:logging:5 |
|
| Red Hat | Power monitoring for Red Hat OpenShift |
cpe:/a:redhat:openshift_power_monitoring |
|
| Red Hat | Red Hat OpenShift Dev Spaces |
cpe:/a:redhat:openshift_devspaces:3 |
|
| Red Hat | Zero Trust Workload Identity Manager |
cpe:/a:redhat:zero_trust_workload_identity_manager:1 |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-61726",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-29T18:31:39.150633Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-29T18:31:59.685Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el10",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_els:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.12::el8",
"cpe:/a:redhat:openshift:4.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.16::el8",
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.17::el8",
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.18::el8",
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.5 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4::el9"
],
"defaultStatus": "affected",
"product": "Cryostat 4 on RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1",
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.19::el8",
"cpe:/a:redhat:openshift:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.18::el9",
"cpe:/a:redhat:satellite_capsule:6.18::el9",
"cpe:/a:redhat:satellite_utils:6.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.18 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.1",
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.2::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.2::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.1"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1.17::el9"
],
"defaultStatus": "affected",
"product": "Cert Manager support for Red Hat OpenShift release 1.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9"
],
"defaultStatus": "affected",
"product": "Custom Metric Autoscaler 2.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace:0.40::el9"
],
"defaultStatus": "affected",
"product": "DevWorkspace Operator 0.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4.3::el9"
],
"defaultStatus": "affected",
"product": "HawtIO HawtIO 4.3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4.4::el9"
],
"defaultStatus": "affected",
"product": "HawtIO HawtIO 4.4.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.0::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.2::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.3::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:6.4::el9"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift 6.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.4::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.4.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.5::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.5.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.6::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1.11::el9"
],
"defaultStatus": "affected",
"product": "Network Observability (NETOBSERV) 1.11.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.4::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.5::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_compliance_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift Compliance Operator 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:source_to_image:1.6::el8"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services 1.6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift File Integrity Operator - FIO 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.8::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.8::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:hummingbird:1"
],
"defaultStatus": "affected",
"product": "Red Hat Hardened Images",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Lightspeed (formerly Insights) for Runtimes 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:2.16::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 2.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:2.25::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 2.25",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.6.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.26::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.26",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.27::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces 3.27",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.17::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.18::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.19::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2.6::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3.9.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Services on OpenShift 18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.12::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.14::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.15::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhui:5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Update Infrastructure 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.11::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_streams:3.2::el9"
],
"defaultStatus": "affected",
"product": "Streams for Apache Kafka 3.2.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1.0::el9"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:2.0::el8"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift 2.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.10::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.6::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.7::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.8::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.9::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "affected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "affected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2"
],
"defaultStatus": "affected",
"product": "Custom Metric Autoscaler operator for Red Hat Openshift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:deployment_validator_operator"
],
"defaultStatus": "affected",
"product": "Deployment Validation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "affected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ext_dns_optr:1"
],
"defaultStatus": "affected",
"product": "ExternalDNS Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_far:0"
],
"defaultStatus": "affected",
"product": "Fence Agents Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1"
],
"defaultStatus": "affected",
"product": "File Integrity Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "affected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_mdr:0"
],
"defaultStatus": "affected",
"product": "Machine Deletion Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:mirror_registry:1"
],
"defaultStatus": "affected",
"product": "mirror registry for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multiarch_tuning_operator"
],
"defaultStatus": "affected",
"product": "Multiarch Tuning Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "affected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_nhc:0"
],
"defaultStatus": "affected",
"product": "Node HealthCheck Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_nmo:5"
],
"defaultStatus": "affected",
"product": "Node Maintenance Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "affected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_clients:2023"
],
"defaultStatus": "affected",
"product": "Red Hat AMQ Clients",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:5"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:6"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:7"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ceph_storage:8"
],
"defaultStatus": "affected",
"product": "Red Hat Ceph Storage 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:connectivity_link:1"
],
"defaultStatus": "affected",
"product": "Red Hat Connectivity Link 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_service_on_aws:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift on AWS",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:2"
],
"defaultStatus": "affected",
"product": "Red Hat Service Interconnect 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ironic:4.17::el9"
],
"defaultStatus": "unaffected",
"product": "Ironic content for Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ironic:4.18::el9"
],
"defaultStatus": "unaffected",
"product": "Ironic content for Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:5"
],
"defaultStatus": "unaffected",
"product": "Logging Subsystem for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "unaffected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "unaffected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
}
],
"datePublic": "2026-01-28T19:30:31.215Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-01T12:04:49.812Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"name": "RHBZ#2434432",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-61726.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3958"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7676"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4460"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3959"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6278"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26527"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26541"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10096"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3416"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3875"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6277"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3186"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28047"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3391"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5968"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14868"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3843"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4166"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3813"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3192"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3977"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3831"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3816"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4256"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5852"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4907"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3970"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3506"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3699"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3297"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3864"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4164"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3669"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2706"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2914"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3035"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3840"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3092"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4174"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3752"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3336"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4892"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3971"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3343"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5146"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5145"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19013"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22937"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22450"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19132"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4672"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2708"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3985"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3188"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3187"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3898"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4952"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3468"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3841"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3470"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3973"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3879"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3815"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5461"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5030"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19634"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3489"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3972"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3880"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3812"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5031"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3471"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3974"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3838"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3821"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4753"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5022"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3932"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3473"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3822"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5533"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5079"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25252"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25251"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3931"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3472"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3836"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3820"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5327"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25248"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5076"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25253"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25250"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3930"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3469"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3835"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3818"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4267"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4211"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5078"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9109"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3929"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3814"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3193"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3833"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3817"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9108"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4264"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5544"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5077"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9097"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9098"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3298"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3341"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3928"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3668"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2709"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2920"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3040"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3839"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4177"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3753"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3337"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4901"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3291"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3340"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:18913"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23228"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22714"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5851"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7942"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25089"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7052"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4500"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4939"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4498"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6429"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5110"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6226"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6428"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6251"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4170"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8433"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4270"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22627"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8229"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25127"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13548"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8151"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11408"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4466"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4467"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3960"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3089"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7385"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7291"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4220"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5807"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3782"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10184"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24977"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19712"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3713"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12282"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14100"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21691"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:15091"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14774"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10104"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4510"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4511"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17598"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3905"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3906"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6554"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21657"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4434"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7249"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4435"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20041"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3855"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3856"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8431"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17468"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6564"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2844"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6192"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3874"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3884"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3559"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8483"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5132"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3556"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5948"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5129"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5950"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5131"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5952"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5130"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3427"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3459"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5394"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11747"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26420"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6184"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21017"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6568"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6497"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19375"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2681"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6567"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23361"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5168"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:2754"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:15984"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14879"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5447"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5452"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5439"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4276"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3296"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:3184"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5444"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5649"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5463"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:4943"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10250"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10225"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8338"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8337"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8167"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13571"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17460"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17463"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28441"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13542"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9848"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8218"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11414"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:3958: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:7676: Red Hat Enterprise Linux Server (v. 7 ELS)"
},
{
"lang": "en",
"value": "RHSA-2026:4460: Red Hat Ansible Automation Platform 2.4 for RHEL 8, Red Hat Ansible Automation Platform 2.4 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:3959: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:6278: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:26527: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:26541: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:10096: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:3416: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:17595: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:3875: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:17446: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:6277: Red Hat Ansible Automation Platform 2.6 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:3186: Cryostat 4 on RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:28047: Red Hat OpenStack Platform 17.1"
},
{
"lang": "en",
"value": "RHSA-2026:3391: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:5968: Red Hat Satellite 6.18 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:14868: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3843: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:4166: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3813: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3192: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3977: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3831: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3816: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:4256: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:5852: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:17040: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:4907: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3970: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:16696: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3506: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3699: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3297: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3864: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:4164: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3669: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:2706: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:2914: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3035: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3840: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3092: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:4174: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3752: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3336: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:4892: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3971: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:3343: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:5146: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:5145: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19013: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19132: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:4672: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:2708: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:3985: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:3188: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:3187: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:3898: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:4952: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:3468: Red Hat Enterprise Linux AppStream AUS (v. 8.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3841: Red Hat Enterprise Linux AppStream AUS (v. 8.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3470: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3973: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3879: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3815: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:5461: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:5030: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)"
},
{
"lang": "en",
"value": "RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3489: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3972: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3880: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3812: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:5853: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:5031: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3471: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:3974: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:3838: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:3821: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:4753: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:5022: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:16102: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3932: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3473: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3854: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:3822: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:5533: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:5079: Red Hat Enterprise Linux AppStream E4S (v.9.0)"
},
{
"lang": "en",
"value": "RHSA-2026:25252: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25251: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3931: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3472: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3836: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:3820: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:5327: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25248: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:5076: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25253: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:25250: Red Hat Enterprise Linux AppStream E4S (v.9.2)"
},
{
"lang": "en",
"value": "RHSA-2026:12030: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12032: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3930: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3469: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3835: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:3818: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12033: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:4267: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:4211: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12028: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:5078: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12031: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:12029: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:11749: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9109: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3929: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3814: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3193: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3833: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3817: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9108: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:4264: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:5544: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:7854: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:5077: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9097: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:9098: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:3298: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3341: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3928: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3668: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:2709: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:2920: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3040: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3839: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:4177: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3753: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3337: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:4901: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3291: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:3340: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:18913: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:5645: Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"lang": "en",
"value": "RHSA-2026:26636: Custom Metric Autoscaler 2.19"
},
{
"lang": "en",
"value": "RHSA-2026:5851: DevWorkspace Operator 0.4"
},
{
"lang": "en",
"value": "RHSA-2026:7942: HawtIO HawtIO 4.3.1"
},
{
"lang": "en",
"value": "RHSA-2026:25089: HawtIO HawtIO 4.4.0"
},
{
"lang": "en",
"value": "RHSA-2026:7052: Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"lang": "en",
"value": "RHSA-2026:4500: Logging Subsystem for Red Hat OpenShift 6.2"
},
{
"lang": "en",
"value": "RHSA-2026:4939: Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"lang": "en",
"value": "RHSA-2026:4498: Logging Subsystem for Red Hat OpenShift 6.4"
},
{
"lang": "en",
"value": "RHSA-2026:6429: Multicluster Global Hub 1.4.5"
},
{
"lang": "en",
"value": "RHSA-2026:5110: Multicluster Global Hub 1.5.4"
},
{
"lang": "en",
"value": "RHSA-2026:6226: Multicluster Global Hub 1.6.2"
},
{
"lang": "en",
"value": "RHSA-2026:6428: Network Observability (NETOBSERV) 1.11.2"
},
{
"lang": "en",
"value": "RHSA-2026:6251: OpenShift API for Data Protection 1.4"
},
{
"lang": "en",
"value": "RHSA-2026:4170: OpenShift API for Data Protection 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:8433: OpenShift Compliance Operator 1"
},
{
"lang": "en",
"value": "RHSA-2026:4270: OpenShift Developer Tools and Services 1.6.2"
},
{
"lang": "en",
"value": "RHSA-2026:22627: OpenShift File Integrity Operator - FIO 1"
},
{
"lang": "en",
"value": "RHSA-2026:8229: Red Hat Advanced Cluster Management for Kubernetes 2.13"
},
{
"lang": "en",
"value": "RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14"
},
{
"lang": "en",
"value": "RHSA-2026:13548: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:11408: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:4466: Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"lang": "en",
"value": "RHSA-2026:4467: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:3960: Red Hat Ansible Automation Platform 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:3089: Red Hat Developer Hub 1.8"
},
{
"lang": "en",
"value": "RHSA-2026:7385: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:7291: Red Hat Hardened Images"
},
{
"lang": "en",
"value": "RHSA-2026:4220: Red Hat Lightspeed (formerly Insights) for Runtimes 1"
},
{
"lang": "en",
"value": "RHSA-2026:5807: Red Hat OpenShift AI 2.16"
},
{
"lang": "en",
"value": "RHSA-2026:3782: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:10184: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:24977: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:19712: Red Hat OpenShift AI 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:3713: Red Hat OpenShift AI 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:5549: Red Hat OpenShift Builds 1.6.5"
},
{
"lang": "en",
"value": "RHSA-2026:12282: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:14100: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:15091: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:14774: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:10104: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:4510: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:4511: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:3905: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:3906: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:6554: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:4434: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:7249: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:4435: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:3855: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:3856: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:8431: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:17468: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:2844: Red Hat OpenShift Dev Spaces (RHOSDS) 3.26"
},
{
"lang": "en",
"value": "RHSA-2026:6192: Red Hat OpenShift Dev Spaces 3.27"
},
{
"lang": "en",
"value": "RHSA-2026:3869: Red Hat OpenShift GitOps 1.17"
},
{
"lang": "en",
"value": "RHSA-2026:3874: Red Hat OpenShift GitOps 1.18"
},
{
"lang": "en",
"value": "RHSA-2026:3884: Red Hat OpenShift GitOps 1.19"
},
{
"lang": "en",
"value": "RHSA-2026:3559: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:5132: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:3556: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:5948: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:5129: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:5950: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:5131: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:5952: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:5130: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:3427: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:3459: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:5394: Red Hat OpenStack Platform 17.1"
},
{
"lang": "en",
"value": "RHSA-2026:11747: Red Hat OpenStack Services on OpenShift 18"
},
{
"lang": "en",
"value": "RHSA-2026:26420: Red Hat Openshift Data Foundation 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:6184: Red Hat Openshift Data Foundation 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:12279: Red Hat Openshift Data Foundation 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:5665: Red Hat Quay 3.10"
},
{
"lang": "en",
"value": "RHSA-2026:4942: Red Hat Quay 3.12"
},
{
"lang": "en",
"value": "RHSA-2026:21017: Red Hat Quay 3.14"
},
{
"lang": "en",
"value": "RHSA-2026:6568: Red Hat Quay 3.15"
},
{
"lang": "en",
"value": "RHSA-2026:6497: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:19375: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:2681: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:6567: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:23361: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:5168: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:2754: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:15984: Red Hat Satellite 6.18"
},
{
"lang": "en",
"value": "RHSA-2026:14879: Red Hat Satellite 6.18"
},
{
"lang": "en",
"value": "RHSA-2026:5447: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:5452: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:5439: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:4276: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:3296: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:3184: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:5444: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:5649: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:5463: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:4943: Red Hat Update Infrastructure 5"
},
{
"lang": "en",
"value": "RHSA-2026:10250: Red Hat Web Terminal 1.11"
},
{
"lang": "en",
"value": "RHSA-2026:10225: Red Hat Web Terminal 1.12"
},
{
"lang": "en",
"value": "RHSA-2026:8338: Red Hat Web Terminal 1.13"
},
{
"lang": "en",
"value": "RHSA-2026:8337: Red Hat Web Terminal 1.14"
},
{
"lang": "en",
"value": "RHSA-2026:8167: Red Hat Web Terminal 1.15"
},
{
"lang": "en",
"value": "RHSA-2026:13571: Streams for Apache Kafka 3.2.0"
},
{
"lang": "en",
"value": "RHSA-2026:17460: Zero Trust Workload Identity Manager 1"
},
{
"lang": "en",
"value": "RHSA-2026:17463: Zero Trust Workload Identity Manager 1"
},
{
"lang": "en",
"value": "RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0"
},
{
"lang": "en",
"value": "RHSA-2026:13542: multicluster engine for Kubernetes 2.10"
},
{
"lang": "en",
"value": "RHSA-2026:9848: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:5636: multicluster engine for Kubernetes 2.7"
},
{
"lang": "en",
"value": "RHSA-2026:8218: multicluster engine for Kubernetes 2.8"
},
{
"lang": "en",
"value": "RHSA-2026:11414: multicluster engine for Kubernetes 2.9"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-01-28T20:01:42.791Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-01-28T19:30:31.215Z",
"value": "Made public."
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"workarounds": [
{
"lang": "en",
"value": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/url",
"product": "net/url",
"programRoutines": [
{
"name": "parseQuery"
},
{
"name": "ParseQuery"
},
{
"name": "URL.Query"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.24.12",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.25.6",
"status": "affected",
"version": "1.25.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "jub0bs"
}
],
"descriptions": [
{
"lang": "en",
"value": "The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large URL-encoded forms. Parsing a large form containing many unique query parameters can cause excessive memory consumption."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-28T19:30:31.215Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/736712"
},
{
"url": "https://go.dev/issue/77101"
},
{
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"title": "Memory exhaustion in query parameter parsing in net/url"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-61726",
"datePublished": "2026-01-28T19:30:31.215Z",
"dateReserved": "2025-09-30T15:05:03.605Z",
"dateUpdated": "2026-07-01T12:04:49.812Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-61726",
"date": "2026-06-30",
"epss": "0.01945",
"percentile": "0.77655"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-61726\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-01-28T20:16:09.713\",\"lastModified\":\"2026-06-30T03:16:55.083\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large URL-encoded forms. Parsing a large form containing many unique query parameters can cause excessive memory consumption.\"},{\"lang\":\"es\",\"value\":\"El paquete net/url no establece un l\u00edmite en el n\u00famero de par\u00e1metros de consulta en una consulta. Si bien el tama\u00f1o m\u00e1ximo de los par\u00e1metros de consulta en las URL generalmente est\u00e1 limitado por el tama\u00f1o m\u00e1ximo de la cabecera de solicitud, el m\u00e9todo net/http.Request.ParseForm puede analizar formularios grandes codificados en URL. Analizar un formulario grande que contiene muchos par\u00e1metros de consulta \u00fanicos puede causar un consumo excesivo de memoria.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/url\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/url\",\"programRoutines\":[{\"name\":\"parseQuery\"},{\"name\":\"ParseQuery\"},{\"name\":\"URL.Query\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.24.12\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.25.0\",\"lessThan\":\"1.25.6\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux Server (v. 7 ELS)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_els:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.4 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.4::el8\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.12::el8\",\"cpe:/a:redhat:openshift:4.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.13::el8\",\"cpe:/a:redhat:openshift:4.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.16::el8\",\"cpe:/a:redhat:openshift:4.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.17::el8\",\"cpe:/a:redhat:openshift:4.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.18::el8\",\"cpe:/a:redhat:openshift:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.4 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.4::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.5 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\",\"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4 on RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\",\"cpe:/a:redhat:openstack:17.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.19::el8\",\"cpe:/a:redhat:openshift:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.18 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.18::el9\",\"cpe:/a:redhat:satellite_capsule:6.18::el9\",\"cpe:/a:redhat:satellite_utils:6.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.1\",\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v. 8.2)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.2::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v.8.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream AUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_aus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.9.2)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:9.2::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cert Manager support for Red Hat OpenShift release 1.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler 2.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"DevWorkspace Operator 0.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace:0.40::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"HawtIO HawtIO 4.3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"HawtIO HawtIO 4.4.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift 6.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:6.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.4.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.5.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability (NETOBSERV) 1.11.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Compliance Operator 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services 1.6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:source_to_image:1.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift File Integrity Operator - FIO 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Hardened Images\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:hummingbird:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed (formerly Insights) for Runtimes 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 2.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:2.16::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 2.25\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:2.25::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.6.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces (RHOSDS) 3.26\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.26::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces 3.27\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.27::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.17::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.18::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.19::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3.9.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Services on OpenShift 18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.12::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.14::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.15::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Update Infrastructure 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhui:5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Streams for Apache Kafka 3.2.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_streams:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift 2.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:2.0::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.10::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.7::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler operator for Red Hat Openshift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Deployment Validation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:deployment_validator_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"ExternalDNS Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ext_dns_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Fence Agents Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_far:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"File Integrity Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Machine Deletion Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_mdr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"mirror registry for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:mirror_registry:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multiarch Tuning Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multiarch_tuning_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"Node HealthCheck Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_nhc:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Node Maintenance Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_nmo:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AMQ Clients\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_clients:2023\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ceph Storage 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ceph_storage:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Connectivity Link 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:connectivity_link:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift on AWS\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_service_on_aws:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Ironic content for Red Hat OpenShift Container Platform 4.17\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_ironic:4.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Ironic content for Red Hat OpenShift Container Platform 4.18\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_ironic:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:logging:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-01-29T18:31:39.150633Z\",\"id\":\"CVE-2025-61726\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.24.12\",\"matchCriteriaId\":\"21FD9368-8AB3-404B-8599-BBF64EFE3C7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.25.0\",\"versionEndExcluding\":\"1.25.6\",\"matchCriteriaId\":\"A547E844-78D2-4B17-B7A9-73E7B503D2CE\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/736712\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/77101\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4341\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10096\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10104\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10184\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10225\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10250\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11408\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11414\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11747\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11749\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12028\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12029\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12030\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12031\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12032\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12033\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12279\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12282\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13542\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13548\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13571\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14100\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14774\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14868\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14879\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:15091\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:15984\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16102\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:16696\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17040\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17084\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17446\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17460\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17463\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17468\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17595\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17598\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:18913\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19013\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19132\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19375\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19634\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19712\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20041\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21017\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21657\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21691\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22450\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22627\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22714\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22937\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23228\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23361\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24977\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25089\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25127\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25248\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25250\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25251\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25252\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25253\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26420\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26527\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26541\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26636\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2681\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2706\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2708\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2709\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2754\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28047\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2844\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28441\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2914\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:2920\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3035\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3040\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3089\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3092\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3184\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3186\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3187\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3188\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3192\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3193\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3291\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3296\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3297\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3298\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3336\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3337\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3340\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3341\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3343\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3391\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3416\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3427\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3459\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3468\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3469\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3470\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3471\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3472\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3473\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3489\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3506\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3556\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3559\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3668\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3669\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3699\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3713\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3752\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3753\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3782\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3812\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3813\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3814\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3815\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3816\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3817\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3818\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3820\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3821\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3822\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3831\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3833\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3835\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3836\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3838\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3839\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3840\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3841\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3843\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3855\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3856\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3864\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3869\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3874\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3875\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3879\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3880\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3884\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3898\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3905\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3906\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3928\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3929\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3930\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3931\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3932\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3958\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3959\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3960\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3970\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3971\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3972\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3973\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3974\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3977\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:3985\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4164\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4166\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4170\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4174\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4177\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4211\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4220\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4256\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4264\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4267\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4270\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4276\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4434\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4435\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4460\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4466\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4467\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4498\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4500\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4510\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4511\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4672\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4753\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4892\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4901\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4907\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4939\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4942\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4943\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:4952\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5022\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5030\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5031\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5076\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5077\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5078\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5079\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5110\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5129\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5130\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5131\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5132\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5145\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5146\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5168\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5327\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5394\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5439\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5444\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5447\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5452\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5461\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5463\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5533\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5544\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5549\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5636\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5645\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5649\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5665\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5807\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5851\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5852\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5948\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5950\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5952\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:5968\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6184\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6192\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6226\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6251\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6277\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6278\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6428\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6429\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6497\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6554\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6564\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6567\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6568\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7052\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7249\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7291\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7385\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7676\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7942\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8151\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8167\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8218\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8229\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8337\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8338\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8431\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8433\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8483\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9097\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9098\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9108\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9109\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9848\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2025-61726\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2434432\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-61726.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"golang: net/url: Memory exhaustion in query parameter parsing in net/url\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el10\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_els:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux Server (v. 7 ELS)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.4 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el8\", \"cpe:/a:redhat:openshift:4.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el8\", \"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el8\", \"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el8\", \"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.4 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.5 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9\", \"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4 on RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:17.1\", \"cpe:/a:redhat:openstack:17.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 17.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.19::el8\", \"cpe:/a:redhat:openshift:4.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.18::el9\", \"cpe:/a:redhat:satellite_capsule:6.18::el9\", \"cpe:/a:redhat:satellite_utils:6.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.18 for RHEL 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.1\", \"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v. 8.2)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v.8.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_aus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream AUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.9.2)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat CodeReady Linux Builder EUS (v.9.4)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat CodeReady Linux Builder EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Cert Manager support for Red Hat OpenShift release 1.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Custom Metric Autoscaler 2.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:devworkspace:0.40::el9\"], \"vendor\": \"Red Hat\", \"product\": \"DevWorkspace Operator 0.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"HawtIO HawtIO 4.3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"HawtIO HawtIO 4.4.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:6.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift 6.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.4.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.5.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Global Hub 1.6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability (NETOBSERV) 1.11.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Compliance Operator 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:source_to_image:1.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services 1.6.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift File Integrity Operator - FIO 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Lightspeed (formerly Insights) for Runtimes 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai:2.16::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI 2.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai:2.25::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI 2.25\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_builds:1.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Builds 1.6.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.20::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.20\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3.26::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces (RHOSDS) 3.26\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3.27::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces 3.27\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1.17::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps 1.17\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1.18::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps 1.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1.19::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps 1.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.9.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Services on OpenShift 18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4.19::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4.19\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.12::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.14::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.16\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6.18\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer 1.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.12\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.13\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.14\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:webterminal:1.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Web Terminal 1.15\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_streams:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Streams for Apache Kafka 3.2.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:2.0::el8\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift 2.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.10::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.6::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.7::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine:2.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"multicluster engine for Kubernetes 2.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Assisted Installer for Red Hat OpenShift Container Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cert_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"cert-manager Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:confidential_compute_attestation:1\"], \"vendor\": \"Red Hat\", \"product\": \"Confidential Compute Attestation\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2\"], \"vendor\": \"Red Hat\", \"product\": \"Custom Metric Autoscaler operator for Red Hat Openshift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:deployment_validator_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Deployment Validation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:external_secrets_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"External Secrets Operator for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ext_dns_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"ExternalDNS Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_far:0\"], \"vendor\": \"Red Hat\", \"product\": \"Fence Agents Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_file_integrity_operator:1\"], \"vendor\": \"Red Hat\", \"product\": \"File Integrity Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:lvms:4\"], \"vendor\": \"Red Hat\", \"product\": \"Logical Volume Manager Storage\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_mdr:0\"], \"vendor\": \"Red Hat\", \"product\": \"Machine Deletion Remediation Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:mirror_registry:1\"], \"vendor\": \"Red Hat\", \"product\": \"mirror registry for Red Hat OpenShift\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multiarch_tuning_operator\"], \"vendor\": \"Red Hat\", \"product\": \"Multiarch Tuning Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_nhc:0\"], \"vendor\": \"Red Hat\", \"product\": \"Node HealthCheck Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:workload_availability_nmo:5\"], \"vendor\": \"Red Hat\", \"product\": \"Node Maintenance Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift API for Data Protection\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_lightspeed\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Lightspeed\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:red_hat_3scale_amp:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat 3scale API Management Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_clients:2023\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat AMQ Clients\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:5\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ceph_storage:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ceph Storage 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:certifications:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Certification Program for Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:connectivity_link:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Connectivity Link 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:edge_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Edge Manager 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Cluster Manager CLI\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:windows_machine_config\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift for Windows Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_service_on_aws:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift on AWS\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:18.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 18.0\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_interconnect:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Service Interconnect 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager - Tech Preview\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ironic:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Ironic content for Red Hat OpenShift Container Platform 4.17\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ironic:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Ironic content for Red Hat OpenShift Container Platform 4.18\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:logging:5\"], \"vendor\": \"Red Hat\", \"product\": \"Logging Subsystem for Red Hat OpenShift\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_power_monitoring\"], \"vendor\": \"Red Hat\", \"product\": \"Power monitoring for Red Hat OpenShift\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"], \"vendor\": \"Red Hat\", \"product\": \"Zero Trust Workload Identity Manager\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-01-28T20:01:42.791Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-01-28T19:30:31.215Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:3958: Red Hat Ansible Automation Platform 2.6 for RHEL 10, Red Hat Ansible Automation Platform 2.6 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7676: Red Hat Enterprise Linux Server (v. 7 ELS)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4460: Red Hat Ansible Automation Platform 2.4 for RHEL 8, Red Hat Ansible Automation Platform 2.4 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3959: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6278: Red Hat Ansible Automation Platform 2.5 for RHEL 8, Red Hat Ansible Automation Platform 2.5 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26527: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26541: Red Hat OpenShift Container Platform 4.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10096: Red Hat OpenShift Container Platform 4.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3416: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17595: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3875: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17446: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6277: Red Hat Ansible Automation Platform 2.6 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3186: Cryostat 4 on RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28047: Red Hat OpenStack Platform 17.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3391: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5968: Red Hat Satellite 6.18 for RHEL 9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14868: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3843: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4166: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3813: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3192: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3977: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3831: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3816: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17084: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4256: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5852: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17040: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4907: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3970: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16696: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3506: Red Hat Enterprise Linux AppStream EUS (v. 10.0), Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3699: Red Hat Enterprise Linux AppStream EUS (v. 10.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3297: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3864: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4164: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3669: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2706: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2914: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3035: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3840: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3092: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4174: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3752: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3336: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4892: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3971: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3343: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5146: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5145: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19013: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19132: Red Hat Enterprise Linux AppStream (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4672: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2708: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3985: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3188: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3187: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3898: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4952: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3468: Red Hat Enterprise Linux AppStream AUS (v. 8.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3841: Red Hat Enterprise Linux AppStream AUS (v. 8.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3470: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3973: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3879: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3815: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5461: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5030: Red Hat Enterprise Linux AppStream AUS (v.8.4), Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19634: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3489: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3972: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3880: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3812: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5853: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5031: Red Hat Enterprise Linux AppStream AUS (v.8.6), Red Hat Enterprise Linux AppStream E4S (v.8.6), Red Hat Enterprise Linux AppStream TUS (v.8.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3471: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3974: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3838: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3821: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4753: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5022: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:16102: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3932: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3473: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3854: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3822: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5533: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5079: Red Hat Enterprise Linux AppStream E4S (v.9.0)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25252: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25251: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3931: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3472: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3836: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3820: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5327: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25248: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5076: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25253: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25250: Red Hat Enterprise Linux AppStream E4S (v.9.2)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12030: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12032: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3930: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3469: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3835: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3818: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12033: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4267: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4211: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12028: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5078: Red Hat CodeReady Linux Builder EUS (v.9.4), Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12031: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12029: Red Hat Enterprise Linux AppStream EUS (v.9.4)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11749: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9109: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3929: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3814: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3193: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3833: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3817: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9108: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4264: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5544: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7854: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5077: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9097: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9098: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3298: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3341: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3928: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3668: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2709: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2920: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3040: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3839: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4177: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3753: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3337: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4901: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3291: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3340: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:18913: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5645: Cert Manager support for Red Hat OpenShift release 1.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26636: Custom Metric Autoscaler 2.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5851: DevWorkspace Operator 0.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7942: HawtIO HawtIO 4.3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25089: HawtIO HawtIO 4.4.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7052: Logging Subsystem for Red Hat OpenShift 6.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4500: Logging Subsystem for Red Hat OpenShift 6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4939: Logging Subsystem for Red Hat OpenShift 6.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4498: Logging Subsystem for Red Hat OpenShift 6.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6429: Multicluster Global Hub 1.4.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5110: Multicluster Global Hub 1.5.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6226: Multicluster Global Hub 1.6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6428: Network Observability (NETOBSERV) 1.11.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6251: OpenShift API for Data Protection 1.4\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4170: OpenShift API for Data Protection 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8433: OpenShift Compliance Operator 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4270: OpenShift Developer Tools and Services 1.6.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:22627: OpenShift File Integrity Operator - FIO 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8229: Red Hat Advanced Cluster Management for Kubernetes 2.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13548: Red Hat Advanced Cluster Management for Kubernetes 2.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11408: Red Hat Advanced Cluster Management for Kubernetes 2.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4466: Red Hat Advanced Cluster Security for Kubernetes 4.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4467: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3960: Red Hat Ansible Automation Platform 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3089: Red Hat Developer Hub 1.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7385: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7291: Red Hat Hardened Images\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4220: Red Hat Lightspeed (formerly Insights) for Runtimes 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5807: Red Hat OpenShift AI 2.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3782: Red Hat OpenShift AI 2.25\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10184: Red Hat OpenShift AI 2.25\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:24977: Red Hat OpenShift AI 2.25\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19712: Red Hat OpenShift AI 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3713: Red Hat OpenShift AI 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5549: Red Hat OpenShift Builds 1.6.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12282: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14100: Red Hat OpenShift Container Platform 4.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:15091: Red Hat OpenShift Container Platform 4.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14774: Red Hat OpenShift Container Platform 4.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10104: Red Hat OpenShift Container Platform 4.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4510: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4511: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3905: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3906: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6554: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4434: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7249: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4435: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3855: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3856: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8431: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17468: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2844: Red Hat OpenShift Dev Spaces (RHOSDS) 3.26\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6192: Red Hat OpenShift Dev Spaces 3.27\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3869: Red Hat OpenShift GitOps 1.17\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3874: Red Hat OpenShift GitOps 1.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3884: Red Hat OpenShift GitOps 1.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3559: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5132: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3556: Red Hat OpenShift Service Mesh 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5948: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5129: Red Hat OpenShift Service Mesh 3.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5950: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5131: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5952: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5130: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3427: Red Hat OpenShift distributed tracing 3.9.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3459: Red Hat OpenShift distributed tracing 3.9.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5394: Red Hat OpenStack Platform 17.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11747: Red Hat OpenStack Services on OpenShift 18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26420: Red Hat Openshift Data Foundation 4.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6184: Red Hat Openshift Data Foundation 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:12279: Red Hat Openshift Data Foundation 4.19\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4942: Red Hat Quay 3.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:21017: Red Hat Quay 3.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6568: Red Hat Quay 3.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6497: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:19375: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2681: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6567: Red Hat Quay 3.16\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5665: Red Hat Quay 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:23361: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5168: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:2754: Red Hat Quay 3.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:15984: Red Hat Satellite 6.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:14879: Red Hat Satellite 6.18\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5447: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5452: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5439: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4276: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3296: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:3184: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5444: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5649: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5463: Red Hat Trusted Artifact Signer 1.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:4943: Red Hat Update Infrastructure 5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10250: Red Hat Web Terminal 1.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:10225: Red Hat Web Terminal 1.12\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8338: Red Hat Web Terminal 1.13\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8337: Red Hat Web Terminal 1.14\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8167: Red Hat Web Terminal 1.15\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13571: Streams for Apache Kafka 3.2.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17460: Zero Trust Workload Identity Manager 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:17463: Zero Trust Workload Identity Manager 1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:28441: mirror registry for Red Hat OpenShift 2.0\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:13542: multicluster engine for Kubernetes 2.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:9848: multicluster engine for Kubernetes 2.6\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:5636: multicluster engine for Kubernetes 2.7\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:8218: multicluster engine for Kubernetes 2.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:11414: multicluster engine for Kubernetes 2.9\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-01-28T19:30:31.215Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2025-61726\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2434432\", \"name\": \"RHBZ#2434432\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-61726.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3958\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7676\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4460\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3959\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6278\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26527\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26541\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10096\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3416\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17595\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3875\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17446\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6277\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3186\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28047\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3391\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5968\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14868\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3843\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4166\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3813\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3192\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3977\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3831\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3816\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17084\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4256\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5852\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17040\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4907\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3970\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16696\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3506\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3699\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3297\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3864\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4164\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3669\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2706\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2914\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3035\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3840\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3092\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4174\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3752\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3336\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4892\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3971\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3343\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5146\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5145\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19013\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22937\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22450\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19132\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4672\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2708\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3985\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3188\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3187\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3898\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4952\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3468\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3841\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3470\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3973\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3815\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5461\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5030\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19634\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3489\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3972\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3880\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3812\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5853\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5031\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3471\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3974\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3838\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3821\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4753\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5022\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:16102\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3932\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3473\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3854\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3822\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5533\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5079\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25252\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25251\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3931\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3472\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3836\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3820\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5327\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25248\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5076\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25253\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25250\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12030\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12032\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3930\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3469\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3835\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3818\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12033\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4267\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4211\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12028\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5078\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12031\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12029\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11749\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9109\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3929\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3814\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3193\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3833\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3817\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9108\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4264\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5544\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7854\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5077\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9098\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3298\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3341\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3928\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3668\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2709\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2920\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3040\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3839\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4177\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3753\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3337\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4901\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3291\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3340\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:18913\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23228\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22714\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5645\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26636\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5851\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7942\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25089\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7052\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4500\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4939\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4498\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6429\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5110\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6226\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6428\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6251\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4170\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8433\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4270\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:22627\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8229\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25127\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13548\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8151\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11408\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4466\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4467\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3960\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3089\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7385\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7291\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4220\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5807\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3782\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10184\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:24977\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19712\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3713\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5549\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12282\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14100\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21691\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:15091\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14774\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10104\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4510\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4511\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17598\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3905\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3906\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6554\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21657\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4434\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7249\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4435\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20041\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3855\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3856\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8431\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17468\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6564\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2844\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6192\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3869\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3874\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3884\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3559\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8483\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5132\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3556\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5948\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5129\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5950\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5131\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5952\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5130\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3427\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3459\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5394\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11747\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26420\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6184\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:12279\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4942\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:21017\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6568\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6497\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:19375\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2681\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6567\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5665\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:23361\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5168\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:2754\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:15984\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:14879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5447\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5452\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5439\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4276\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3296\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:3184\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5444\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5649\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:4943\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10250\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:10225\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8338\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8337\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8167\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13571\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17460\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:17463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:28441\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:13542\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:9848\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:5636\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:8218\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:11414\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-06-30T12:06:15.501Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-61726\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-29T18:31:39.150633Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-29T18:31:55.540Z\"}}], \"cna\": {\"title\": \"Memory exhaustion in query parameter parsing in net/url\", \"credits\": [{\"lang\": \"en\", \"value\": \"jub0bs\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/url\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.24.12\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.25.0\", \"lessThan\": \"1.25.6\", \"versionType\": \"semver\"}], \"packageName\": \"net/url\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"parseQuery\"}, {\"name\": \"ParseQuery\"}, {\"name\": \"URL.Query\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/736712\"}, {\"url\": \"https://go.dev/issue/77101\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4341\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large URL-encoded forms. Parsing a large form containing many unique query parameters can cause excessive memory consumption.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-01-28T19:30:31.215Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-61726\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-06-30T12:06:15.501Z\", \"dateReserved\": \"2025-09-30T15:05:03.605Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-01-28T19:30:31.215Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:5452
Vulnerability from csaf_redhat - Published: 2026-03-23 16:13 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64 | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64 | — |
Workaround
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64 | — | ||
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.3.3 release of Red Hat Trusted Artifact Signer OpenShift Operator.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19, 4.20 and 4.21",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5452",
"url": "https://access.redhat.com/errata/RHSA-2026:5452"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5452.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.3.3 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-07-01T00:13:34+00:00",
"generator": {
"date": "2026-07-01T00:13:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5452",
"initial_release_date": "2026-03-23T16:13:04+00:00",
"revision_history": [
{
"date": "2026-03-23T16:13:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-23T16:13:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.3",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"product": {
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"product_id": "registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cosign-rhel9@sha256%3Afab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773309219"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"product": {
"name": "registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"product_id": "registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"product_identification_helper": {
"purl": "pkg:oci/fetch-tsa-certs-rhel9@sha256%3A109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773307765"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"product": {
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"product_id": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitsign-rhel9@sha256%3A582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773307743"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"product_id": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rekor-cli-rhel9@sha256%3Ad50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773307592"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64",
"product": {
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64",
"product_id": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/updatetree-rhel9@sha256%3Abcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773231678"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64"
},
"product_reference": "registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64"
},
"product_reference": "registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64"
},
"product_reference": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
},
"product_reference": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T16:13:04+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5452"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T16:13:04+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5452"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T16:13:04+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5452"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/cosign-rhel9@sha256:fab56b9624ac2348e7fef16cda18f48777f76909d93a505db62717a74d9a7c9d_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/fetch-tsa-certs-rhel9@sha256:109fc1b1ce669c144798adc1e09017ced12f36907b4da50c7cc0deb15993e844_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/gitsign-rhel9@sha256:582d9239bbfcad86a6927c9f69b01d8738c0f268aec9d0b00d913f2071f11a28_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:d50cee3044eca6e7ce7bba7d72f9baba10a2ada5cd448bd293cb96a8c47a1eb4_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/updatetree-rhel9@sha256:bcd31780ad6c923dabd76e26a8550b5eb975e3beb94d56f986eb14fa37b23cff_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:5461
Vulnerability from csaf_redhat - Published: 2026-03-23 17:44 - Updated: 2026-07-01 00:17A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild-composer is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "An image building service based on osbuild It is inspired by lorax-composer and exposes the same API. As such, it is a drop-in replacement.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5461",
"url": "https://access.redhat.com/errata/RHSA-2026:5461"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5461.json"
}
],
"title": "Red Hat Security Advisory: osbuild-composer security update",
"tracking": {
"current_release_date": "2026-07-01T00:17:04+00:00",
"generator": {
"date": "2026-07-01T00:17:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5461",
"initial_release_date": "2026-03-23T17:44:49+00:00",
"revision_history": [
{
"date": "2026-03-23T17:44:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-23T17:44:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:17:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:28.7-5.el8_4.src",
"product": {
"name": "osbuild-composer-0:28.7-5.el8_4.src",
"product_id": "osbuild-composer-0:28.7-5.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@28.7-5.el8_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@28.7-5.el8_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@28.7-5.el8_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:28.7-5.el8_4.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src"
},
"product_reference": "osbuild-composer-0:28.7-5.el8_4.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:28.7-5.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src"
},
"product_reference": "osbuild-composer-0:28.7-5.el8_4.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T17:44:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5461"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T17:44:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5461"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-core-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-debugsource-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-tests-debuginfo-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-0:28.7-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:osbuild-composer-worker-debuginfo-0:28.7-5.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:5463
Vulnerability from csaf_redhat - Published: 2026-03-23 16:40 - Updated: 2026-07-01 00:17A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.3.3 release of Red Hat Trusted Artifact Signer OpenShift Operator.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19, 4.20 and 4.21",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5463",
"url": "https://access.redhat.com/errata/RHSA-2026:5463"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5463.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.3.3 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-07-01T00:17:04+00:00",
"generator": {
"date": "2026-07-01T00:17:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5463",
"initial_release_date": "2026-03-23T16:40:06+00:00",
"revision_history": [
{
"date": "2026-03-23T16:40:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-23T16:40:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:17:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.3",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"product_id": "registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtas-operator-bundle@sha256%3A32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773318584"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64",
"product_id": "registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtas-rhel9-operator@sha256%3A46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773318584"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-23T16:40:06+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5463"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-operator-bundle@sha256:32e72247b14ffbf95f4a25e0950d30d61e227d15145ca5a4a410d15c26bf454c_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-rhel9-operator@sha256:46e034f706fdcd5f84f35a1250a064495f5f68c90fef13be9c01936904b07ed6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
}
]
}
RHSA-2026:5533
Vulnerability from csaf_redhat - Published: 2026-03-24 04:02 - Updated: 2026-07-01 00:17A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild-composer is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5533",
"url": "https://access.redhat.com/errata/RHSA-2026:5533"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5533.json"
}
],
"title": "Red Hat Security Advisory: osbuild-composer security update",
"tracking": {
"current_release_date": "2026-07-01T00:17:04+00:00",
"generator": {
"date": "2026-07-01T00:17:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5533",
"initial_release_date": "2026-03-24T04:02:36+00:00",
"revision_history": [
{
"date": "2026-03-24T04:02:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T04:02:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:17:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:46.3-7.el9_0.src",
"product": {
"name": "osbuild-composer-0:46.3-7.el9_0.src",
"product_id": "osbuild-composer-0:46.3-7.el9_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@46.3-7.el9_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@46.3-7.el9_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"product_id": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@46.3-7.el9_0?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@46.3-7.el9_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_id": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@46.3-7.el9_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@46.3-7.el9_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@46.3-7.el9_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-core-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@46.3-7.el9_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"product_id": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@46.3-7.el9_0?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:46.3-7.el9_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src"
},
"product_reference": "osbuild-composer-0:46.3-7.el9_0.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-core-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T04:02:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5533"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T04:02:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5533"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.src",
"AppStream-9.0.0.Z.E4S:osbuild-composer-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-core-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-debugsource-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-dnf-json-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-tests-debuginfo-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-0:46.3-7.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:osbuild-composer-worker-debuginfo-0:46.3-7.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:5544
Vulnerability from csaf_redhat - Published: 2026-03-24 06:55 - Updated: 2026-07-01 00:17A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild-composer is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5544",
"url": "https://access.redhat.com/errata/RHSA-2026:5544"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5544.json"
}
],
"title": "Red Hat Security Advisory: osbuild-composer security update",
"tracking": {
"current_release_date": "2026-07-01T00:17:04+00:00",
"generator": {
"date": "2026-07-01T00:17:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5544",
"initial_release_date": "2026-03-24T06:55:51+00:00",
"revision_history": [
{
"date": "2026-03-24T06:55:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T06:55:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:17:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132.2-5.el9_6.src",
"product": {
"name": "osbuild-composer-0:132.2-5.el9_6.src",
"product_id": "osbuild-composer-0:132.2-5.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132.2-5.el9_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132.2-5.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"product_id": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132.2-5.el9_6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132.2-5.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_id": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132.2-5.el9_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132.2-5.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132.2-5.el9_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-core-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@132.2-5.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"product_id": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@132.2-5.el9_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132.2-5.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src"
},
"product_reference": "osbuild-composer-0:132.2-5.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-core-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T06:55:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5544"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T06:55:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.src",
"AppStream-9.6.0.Z.EUS:osbuild-composer-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-core-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-debugsource-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-tests-debuginfo-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-0:132.2-5.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:osbuild-composer-worker-debuginfo-0:132.2-5.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:5549
Vulnerability from csaf_redhat - Published: 2026-03-24 07:31 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
Workaround
|
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
Workaround
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Builds 1.6.4",
"title": "Topic"
},
{
"category": "general",
"text": "Releases of Red Hat OpenShift Builds 1.6.4",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5549",
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.6",
"url": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.6"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5549.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Builds 1.6.4",
"tracking": {
"current_release_date": "2026-07-01T00:13:34+00:00",
"generator": {
"date": "2026-07-01T00:13:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5549",
"initial_release_date": "2026-03-24T07:31:25+00:00",
"revision_history": [
{
"date": "2026-03-24T07:31:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T07:31:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Builds 1.6.5",
"product": {
"name": "Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_builds:1.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Builds"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920797"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920861"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3Ae7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921337"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3Ad3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921036"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Aabc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774304869"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-operator-bundle@sha256%3Ab5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774334986"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931994"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3Aa716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774334066"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921206"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920797"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920861"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921337"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921036"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Aace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774304869"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3Aea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931994"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774334066"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921206"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920797"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920861"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921337"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921036"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Aa753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774304869"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3Ae1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931994"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Ad6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774334066"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921206"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920797"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773920861"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921337"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921036"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774304869"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3Ad9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931994"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Ab623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773931788"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1774334066"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1773921206"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T07:31:25+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.3 upgrades to to 1.6.4",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5549"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:3e7802fd4777d02152c225bd23d99d3a67301ef7dcc4d86624dc0852905b89c0_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:658118be2dd7dde63668822f2b10bf2155d1a7264435c31e9da01c4eed429a31_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:6ebecac905954551ee9e1d8ace2282305823528e5d81f430020390e6f0146733_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:9f138971e0419cf08273b296c86770a6a8146e96b19f354df51141794cb2dc50_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:0c292a7860239fcaf9dc3b99ded7fb3bf35bb04e36419731012a407a055ce93a_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:84a60e844b90441a353b605ec9d893426a2cba422c45306090273a738b029242_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:86dc4e5cb44e3e7519fa3fb4c994b2cc9204117a728c458b3994c8c6dfba372d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:9a0705a74dbf6f6dc4f202696462940aa8c21358c60678d8c06f39e438ee410d_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6cad955d303121f214c9200fdded75a18c0ebca4d6676fc49fb82c06fc4790fc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:933f790fe6a2652dde798dcb39e4daeb6ad2a3b371d3b4930ef4f016a70769ed_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:942b6a4d4299e09ba619144ee216cb5eea73dd8aea6117ae4cb92a82c026c76b_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e7607a6ca262ba1f9403d8a89e8f9771b84cac45e43eaee739789cf0cb8ebd29_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0a49e3ed4090ee01e433871ef2765d8c74813333f6a641f2edff6fd56ede8d76_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:21230f1cee5974dc459f4b31f829f942cf27d2b7adf081ade185f78b8554822f_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:7aaa6d41e175e70f6a96ee44ba47805987a818858a19517698ec564d2d4c6c61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:d3092e5ad323b1454a7ee54d54ff0aae0f5cb44603a93a80087768e984c917fc_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:b5a49391fd646c612bff8ee78e55f193f17141a3ef567eefdbaa21e9edaf4ed1_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:846cfa73983011c3f351e0584ace035ad06713f78e625e351922c33c31fc35f6_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:a753821c3238712b53436e7689ed0bf6dde224aa9bbcca70c4018709e7391ff5_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:abc4ca39454ce581794f6e80b272878b1aa81636d84933de5de0035888d9e231_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:ace068e3a65adc34ebba6a38242d4bb65e8cdd05c846daadfaa9e687e666b0bb_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:0a3b22036310909533456be9c03ae6b7b3c5d91b89b245533925cfe81e523d9e_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:d9a636edf9d0ea72339a6cf4af5d343f8ff0723cd466581a80968820405f9a15_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:e1489201089cda6b2b6dfe8b3b74bb4565030586de1ba18888727a5ddba4dea1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:ea105c68e91862c8d0279240d9d92d1d27b816b49bbf528fb2d30a11343a24d8_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:1cc18f61f97007488f929514f0d96e7ee799cbeb57c8040393510fb5df1308ea_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:391eda856869508163773cf3d8f457bc27bae4619009abab4e1bc95c34013a80_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:b623dd3f2f055038655d3ec62983d6bf7f519d4b2d010c89f2809870ab75c3ff_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:d6d1b43384c9532b4d5c0af85df5a6086b986494825216103c02bfe67ddb1f33_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:10cc203162a18a29b59faedf70efbdce132e92f64f915d3265c4fcb44711df9c_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:1beb2ef462b304a691c1bfd855bc6f70d26895a290de7524e0806ea023f92a30_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:8006f2dbeae12667c5a31827ef0f022733a950234cd55a0239334f3003b6e438_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:a716d3e3cc713c7494d0c051d23a872f4d8404f5f2c5226b13c715c901122872_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:19356ed9f617a6fccc1b299c05c07a54d078d1cde15ebe6663e2e11da3b7ac61_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1dad4897c8b22566fd61a83af3ae9f235001d5b8e5cdd40ed6d76bf7f58b508a_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:1e20f4f7824339c4685afa6e309f8c143c245d824ae7d781488816fa1d62d17c_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:8fa9769e07dd82241952df0f4dd80e3d9671a9df66f0a4390d009123c6f09179_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
}
]
}
RHSA-2026:5636
Vulnerability from csaf_redhat - Published: 2026-03-24 14:23 - Updated: 2026-07-01 06:14A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
Workaround
|
A flaw was found in database/sql. Concurrent queries can produce unexpected results when a query is cancelled during a Scan method call on returned Rows, creating a race condition. This vulnerability allows an attacker who can initiate and cancel queries to trigger this condition, possibly leading to inconsistent data being returned to the application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — |
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — | ||
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
Workaround
|
A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x | — |
Workaround
|
|
| Unresolved product id: multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The multicluster engine for Kubernetes 2.7 General Availability release images,\nwhich add new features and enhancements, bug fixes, and updated container images.",
"title": "Topic"
},
{
"category": "general",
"text": "The multicluster engine for Kubernetes v2.7 images\n\nThe multicluster engine for Kubernetes provides the foundational components\nthat are necessary for the centralized management of multiple\nKubernetes-based clusters across data centers, public clouds, and private\nclouds.\n\nYou can use the engine to create new Red Hat OpenShift Container Platform\nclusters or to bring existing Kubernetes-based clusters under management by\nimporting them. After the clusters are managed, you can use the APIs that\nare provided by the engine to distribute configuration based on placement\npolicy.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5636",
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13465",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47907",
"url": "https://access.redhat.com/security/cve/CVE-2025-47907"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-22029",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25639",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5636.json"
}
],
"title": "Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.9 security update",
"tracking": {
"current_release_date": "2026-07-01T06:14:12+00:00",
"generator": {
"date": "2026-07-01T06:14:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5636",
"initial_release_date": "2026-03-24T14:23:47+00:00",
"revision_history": [
{
"date": "2026-03-24T14:23:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T14:23:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T06:14:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "multicluster engine for Kubernetes 2.7",
"product": {
"name": "multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9"
}
}
}
],
"category": "product_family",
"name": "multicluster engine for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"product_id": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256%3Afe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970989"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"product_id": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256%3A08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185824"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"product_id": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256%3A76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256%3A9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773445006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256%3Afb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773531423"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256%3A111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091098"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256%3A694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091113"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256%3Af02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091117"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256%3Adc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"product_id": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256%3A5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773873328"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"product_id": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256%3A1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773639118"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"product_id": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256%3A7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773100128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"product_id": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256%3A50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"product_id": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256%3A6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773869889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256%3A618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773688774"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256%3A365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256%3A91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398921"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"product_id": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256%3Ad6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773877068"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"product_id": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256%3A9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"product_id": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256%3A1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"product_id": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256%3Ab22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091070"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"product_id": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256%3A9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773741020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"product_id": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256%3Ad24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"product_id": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256%3A04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091099"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"product_id": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256%3A3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970964"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"product_id": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256%3A5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970966"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"product": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"product_id": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256%3A2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"product_id": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256%3A4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970989"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"product_id": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256%3A53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185824"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"product_id": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256%3Aa2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256%3Afb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773445006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256%3A8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773531423"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256%3A4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091098"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256%3Adabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091113"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256%3A6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091117"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256%3A2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"product_id": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256%3Ae5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773873328"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"product_id": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256%3Abf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773639118"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"product_id": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256%3Ad07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773100128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"product_id": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256%3A705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"product_id": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256%3A70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773869889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256%3A92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773688774"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256%3Ad0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256%3Ae91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398921"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"product_id": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256%3A06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773877068"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"product_id": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256%3A2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"product_id": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256%3Af3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"product_id": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256%3Ab34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091070"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"product_id": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256%3Ac29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773741020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"product_id": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256%3Afce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"product_id": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256%3Ae8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091099"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"product_id": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256%3A4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970964"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"product_id": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256%3Aa47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970966"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"product": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"product_id": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256%3A495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256%3Ad00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970989"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256%3A1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185824"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256%3Ac4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256%3A6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773445006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256%3Aec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773531423"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256%3Aca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091098"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256%3Ad35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091113"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256%3Af87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091117"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256%3A4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256%3A89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773873328"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256%3A8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773639118"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256%3A8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773100128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256%3A9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256%3A5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773869889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256%3Acacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773688774"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256%3A775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256%3A52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398921"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256%3A4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773877068"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256%3A99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256%3A259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256%3A21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091070"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256%3A6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773741020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256%3A31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256%3A92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091099"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256%3A2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970964"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256%3Aae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970966"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le",
"product": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le",
"product_id": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256%3Aa80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"product_id": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256%3Ac09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970989"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"product_id": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256%3Aaed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185824"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"product_id": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256%3Ac6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256%3A8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773445006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256%3Ae146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773531423"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256%3A1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091098"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256%3Ac0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091113"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256%3Abbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091117"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"product_id": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256%3A674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091011"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"product_id": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256%3A04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773873328"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"product_id": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256%3A4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773639118"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"product_id": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256%3A2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773100128"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"product_id": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256%3A47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091107"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"product_id": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256%3A466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773869889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256%3A0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773688774"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256%3Adb93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"product_id": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256%3A0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773398921"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"product_id": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256%3Adc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773877068"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"product_id": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256%3Aa99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773185866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"product_id": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256%3A90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091077"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"product_id": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256%3A6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091070"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"product_id": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256%3A7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773741020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"product_id": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256%3A66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"product_id": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256%3A4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773091099"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"product_id": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256%3A2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970964"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"product_id": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256%3Ad2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970966"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"product": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"product_id": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256%3A86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine\u0026tag=1773970968"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64"
},
"product_reference": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64 as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64"
},
"product_reference": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x"
},
"product_reference": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le as a component of multicluster engine for Kubernetes 2.7",
"product_id": "multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
},
"product_reference": "registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le",
"relates_to_product_reference": "multicluster engine for Kubernetes 2.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2026-01-21T20:01:28.774829+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: prototype pollution in _.unset and _.omit functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable by applications using the _.unset and _.omit functions on an object and allowing user input to determine the path of the property to be removed. This issue only allows the deletion of properties but does not allow overwriting their behavior, limiting the impact to a denial of service. Due to this reason, this vulnerability has been rated with an important severity.\n\nIn Grafana, JavaScript code runs only in the browser, while the server side is all Golang. Therefore, the worst-case scenario is a loss of functionality in the client application inside the browser. To reflect this, the CVSS availability metric and the severity of the Grafana and the Grafana-PCP component have been updated to low and moderate, respectively.\n\nThe lodash dependency is bundled and used by the pcs-web-ui component of the PCS package. In Red Hat Enterprise Linux 8.10, the pcs-web-ui component is no longer included in the PCS package. As a result, RHEL 8.10 does not ship the vulnerable lodash component within PCS and is therefore not-affected by this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "RHBZ#2431740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg",
"url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
}
],
"release_date": "2026-01-21T19:05:28.846000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement strict input validation before passing any property paths to the _.unset and _.omit functions to block attempts to access the prototype chain. Ensure that strings like __proto__, constructor and prototype are blocked, for example.",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: prototype pollution in _.unset and _.omit functions"
},
{
"cve": "CVE-2025-47907",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2025-08-07T16:01:06.247481+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2387083"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in database/sql. Concurrent queries can produce unexpected results when a query is cancelled during a Scan method call on returned Rows, creating a race condition. This vulnerability allows an attacker who can initiate and cancel queries to trigger this condition, possibly leading to inconsistent data being returned to the application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "database/sql: Postgres Scan Race Condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Moderate severity issues rather than Important. The os/exec LookPath flaw requires a misconfigured PATH to be exploitable, and the database/sql race condition primarily impacts applications that cancel queries while running multiple queries concurrently. Both can cause unexpected behavior, but the exploitation scope is limited and unlikely to result in direct compromise in most typical deployments.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47907"
},
{
"category": "external",
"summary": "RHBZ#2387083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47907",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47907"
},
{
"category": "external",
"summary": "https://go.dev/cl/693735",
"url": "https://go.dev/cl/693735"
},
{
"category": "external",
"summary": "https://go.dev/issue/74831",
"url": "https://go.dev/issue/74831"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/x5MKroML2yM",
"url": "https://groups.google.com/g/golang-announce/c/x5MKroML2yM"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3849",
"url": "https://pkg.go.dev/vuln/GO-2025-3849"
}
],
"release_date": "2025-08-07T15:25:30.704000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "database/sql: Postgres Scan Race Condition"
},
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-22029",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-01-10T04:01:03.694749+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2428412"
}
],
"notes": [
{
"category": "description",
"text": "A cross site scripting flaw has been discovered in the npm react-router and @remix-run/router packages. React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs causing unintended javascript execution on the client. This is only an issue if you are creating redirect paths from untrusted content or via an open redirect.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-22029"
},
{
"category": "external",
"summary": "RHBZ#2428412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2428412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-22029",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22029"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-22029"
},
{
"category": "external",
"summary": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx",
"url": "https://github.com/remix-run/react-router/security/advisories/GHSA-2w69-qvjg-hvjx"
}
],
"release_date": "2026-01-10T02:42:32.736000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@remix-run/router: react-router: React Router vulnerable to XSS via Open Redirects"
},
{
"cve": "CVE-2026-25639",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"discovery_date": "2026-02-09T21:00:49.280114+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2438237"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"known_not_affected": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "RHBZ#2438237",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2438237"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57",
"url": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.13.5",
"url": "https://github.com/axios/axios/releases/tag/v1.13.5"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433",
"url": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433"
}
],
"release_date": "2026-02-09T20:11:22.374000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T14:23:47+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:4667db4cc9699f5e41cda6388eb7371ad9c8c73a92a7fc19115ddd48b562e56e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:c09c8b8f588cac2b8c4b15a79de635971f002419ffc2b4d967f383160897e2dd_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:d00a17c4162336d52d47452f13d2470ddd4f9d6913759472791ee4d8bfc34d46_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/addon-manager-rhel9@sha256:fe8b267cb2ea707fda229bae30ca074079da2909e7313eff06ba9eb2fb529237_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:76d00b37dc5c5d7bf489f55f3a41a953677449491b01c789bf7b29c789c461b7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:a2fa219ec0da0910c1a858ac43d53288f2cf434c26fcb6cd8185e9d6f13a1ebd_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c4e710e3ab66dfbcb3f2db4d17f73aea44ea9d2649e5f5cec94c1b51644809cf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/backplane-rhel9-operator@sha256:c6a8bf6b7644c45a41d4c8a1c31cc08e03b6ac5ed36f562256cb1509f26a47c7_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:6ae1271bcaebb79d7dd48fa4bb89f2cf0bf450cce004899feee7d1a53d230a81_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:8ffc2f2cdfd7753c083ca083a42da60b8783d09b6817c6b22c38c91d67c0b4a5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:9295aea24d0997fd5112e4bc6701f15e5ed2ee54f298d134aef5c9d499ad7ce5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb103ee7a47badea6dfd32f698cc209bb2242dd90b51986cea6f26a03ade9516_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:8173d4f41f25103f387f1b148f9e90eba72abeccd506bfe657f6fd54cbbcf395_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:e146412fb2f0d808cf6a0faa5f39e54032cd4b6c594d67795bb81883ebf0b386_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:ec486aa31c687d3f9e8dffe7ae5018b9ce3cc8795a91765c237eb72b2f6984c5_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:fb47b5a6d4fe1c966eb29109c27a5e323b6b4e665a2754f234979cef4bfc6fc2_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:111a02c966b528a619c9ad5942151e64374e0c57d80be21f91c0f41469c63c19_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:1396ea60940f7dfc33d67d918dd82d62f780d0e837e12785ccec2ada30ce3f93_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:4c393e89346494a9abd31c664e977edacd6ca8bf1f1c28c2aa9a6625f0d02d9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9@sha256:ca4d807da014acefb7e963000cd2431352087dd908491ff4189592f53dec93ff_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:694ac8be10bee34d7c34fdcabde7dfdf1558053cac0479eca4677971c09589e6_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:c0b2cdac26577de087dfd119ff0e2f996f211cd9021bed43d01e286fe166642d_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:d35fb00e5d71a79ec679d7bb9911c4974ca4ebe334e76461270594feda1a7378_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9@sha256:dabdf0f6fec7ebd5b86034281ae740aea0e77146e33bdd04c01590745b68ea8e_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:6e44a95fd942fad8a4f43379d100d2f11808caef975afbafe244543b2f33e2b1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:bbcbedae29915aecb2d0722d16a5265b214714b2e8695f4885395982507950f8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f02386b7e2476ab45ef771bdc6034ba4148bdbbf30cb95e2110a681adaeaa03e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9@sha256:f87238bec802fb8e8aa257f73eb32f3b3cacf1564677e594ca0d165ed2c0a021_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:2dc8a21ac845a94b55a048554052666910cd7e5fc2f9731d62c8911f18ac3fcb_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:4cb50e9064955ace00ee9bbc0592f5e073affa7a29d0d8a119b67bb8fc9d5a20_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:674b94c6913ca04eb711ccf438f24fe22d7332c8f7ca733a8d0e6b5b5b3f99ab_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/cluster-proxy-rhel9@sha256:dc747542c832d5868ce34b622f3cb73a3376beab272bdb156b4a5d29439173a8_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:04ac93d513d3d10d83de367893012f4098b281c89d773d5799393b1ecb184658_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:5b51bbe361be033ce654374dbf65f15a7449072207d8350959becd9921a7da1a_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:89d53a8fca9a27f188f13631f4416eb9c8460868e095ed207f55591c76ea0acf_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9@sha256:e5ab3e9b45628c867d6b8babec0e2dc9b32d1b9bdf5aae9a74ac0e45b553355f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:1108dd8708d80e09fcc6cf4ecb2ec3d076f1fd22814b6c6ce2b4236143779527_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:4b8c28da26c5fcc04cfe2072965fdb957fd2ebc514afe8ab46c79d625dc7dd46_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:8cbfa37103a4fb66ce05ae0a001412af7556b61b4079406c82bb82a1c7bf841a_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:bf00fb14cf15607b90bfd5719b9707081b9f4696d4296944586fc839e0210d9b_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:2efa3dbf99e5be1f8eb4f169f5f2229b338fdf2d2c72b9c0b0da9392e612cc5f_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:7141546552e4237c8b118044c3cc310ddfee917b547c36857a291c33e185bcc1_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:8aaa0f89e8e6ad810632240a7e032b6e673f69e1e4018ab6b36dd87de69ceeb8_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/console-mce-rhel9@sha256:d07f47405187ce8f4b91686b48d4ed71336ff2bd9218b88c31f52ddc22db9238_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:47c835ad25efcfa42534a1daf7235b18b318030546e81c784027c62ab665b896_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:50276a56714a1bc1aabedbadb7f702913412f6a20db8b110986436845ee2f3c7_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:705746f64a46c4990cc3ec16236c41c64352493fdeb9f7fbbc34353ff111e267_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/discovery-rhel9@sha256:9358b7c24e4c4f8e72266af077352af1af3ba61e266087cf55b7dc9ea0eddcb9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:466a01f1457e47e5b418c8e1d87cc2d92e100d635e6cbbc6224039b71d413105_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:5d81a9b6f31e72d5beddec8128e693ecacd03bbbb6640a626e06a9b4b033c47e_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:6d05352bd35932dc05bd12a06890b7e99594773791e0c8edd8492a835155acb3_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hive-rhel9@sha256:70ad5cb3532bde1dd5a9337a7064dd8e1ff1799bcb017a2d2e6536a932ce22dc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:0c554f87aa16a5c7a6c6ee78886787b055fad40c557f1cbaa5996db9a09b41ce_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:618edff2bf45eea71e6f3e7f7b24e95f10314b146ff45ac72ea8cabb1cb373d4_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:92d36152258c9d926be0bdcfac34995f22eec3518111fbf2c768b660129f5440_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator@sha256:cacde4ea2c1d98290f68b7ad0a3ca31582710a3b64442649baace5b8ee953f89_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:365a26e2d054aefe147ad411da6014e76c9d4f4646a8382b9be3f3eeb35fc6cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:775d0fbe7f2a3d4abdbb751331dbdc7457ff489e1d2aa32c93b7bec4dff2eeb4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:d0062eaae78adb437020762d1a3e555c2b5bc0fe05da89716b2e8acf673ff661_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-cli-rhel9@sha256:db93b4a928c940e66ea4ada9f69f3b20f6bf4d64146df89d8e9e5a66acd2a03c_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:0b57da9ddb495d659da29e2a699d5fedb720056f72f77e426c40c1a7bae79a87_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:52625c24cfe3921bc6c00090b150b36544410b9b877b43e148abf634cdb8c0e9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:91c20f61a7e054ac5b53b8b8ad06f110ed3db0ace9258fd9e2b3fa03f59f11ab_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:e91c55697e0d95b8c9265d0072c5b80faed4dd9dfdfeb87443f98f473fcf42bc_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:06109d274a92145cc11d4f30ed877d2a233a4852e3537d87b117e6682b911b20_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:4f7e7a8764b018c6d51c0700a76f0dcedcf5ffe85f28f66c214e36455105e32f_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:d6afe401727d8b252009042c03319fb6a9bc2cfd2ffba5e5518c9a22e91692de_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/image-based-install-rhel9@sha256:dc366eaa2c3f3f72003f928262c03900983aaac8352615715d72bf5223b59a94_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2a1963aa5fb3ee452084510bac3792ae508b5c9eeb41c676e13f2551d7c88d60_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:9774a696206b422b52b5f1082750d7e62cccf3c7ee0e28ec156b560cf1acebb0_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:99d0b694cee080c924c2e2294af4a0a36f669129516f205b5e13a3eabd1ee019_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a99ef9cd8f37bbf76d5bb6b81865547af9ec456b0204e36995ff86960abcf1f5_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:1b2c836336117c0e04dc30101898117b68edf6489ad9da955453cb6e4491bb33_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:259049072cf889d7b72fdae5b5a17bd2d4d6fd176cb1da4274b70f02c854dea9_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:90a96bb156d096a0c55fcf27b2dc0176e56c9b7388697ed17d9bbb257c39a3aa_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9@sha256:f3aa3d1b579275dcdf403867cc9b140f34cfcdc099d4b87819ef7f4978af2be1_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:21b52ad7c77dd21bc0a9a20a1ae6e2fc5d236b39e16dbfa82158ec80ef2846d4_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:6a83c52ba828f45e84550ba702ba86d5746057194d389b6959ab7486e8615b16_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b22d17d474876f6079c86518dbc04e692ade54067cd4fc0c5660d8a1ba0937cf_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9@sha256:b34be4d5652efaee930bd26536547fd1fc04dda4060605dabc276e59f96a0a0c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:6ab181004adafad8a5cd0155da9e107ab3989ef97007e69decb7238a9b0597da_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:7782c711aff60d9ac0d8297431eabca6945752292b16beecdb52303ad22f1553_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:9a23dfe4c781261e8db8fbb65517d69c3532fba5e897978b8a7765864b84b495_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/multicloud-manager-rhel9@sha256:c29b2dc7510dcc147cf8460e4e39c0f2595edc4ff81f62c035333c6354776335_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:08592505c61791b614511a2c51d9963aa3277ac9e2af98954b07e47e36ca6765_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:1145c4b8c3606c2550986f1bf352835300f58d81f6c50d63846983a666602655_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:53c5fd16cd44f631ca08f6eb51e346d99950c9b4c6860743262c068074ba3c9f_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/must-gather-rhel9@sha256:aed4dab31c6e0d932781c631022214fdea5b28e6ccdc00abee3e006d13befe8a_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:31acda49be5c46912447113bf6133b4457f1f49270741859cb1493b65474d203_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:66c468c37631e94fcc32442e93a149caf3ad4831d1817314983dde8ba145fd25_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:d24798fdb05f2c2959b03889dff46e58c3b15d531a3750d1cd153ae4fcfda087_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/placement-rhel9@sha256:fce0a7344e9f0d86a8d5e5dbd70a3a8ef6a55567ade0a7345ffda3344d2617d6_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:04cc5c05db5bd9bd83f529523cc003c0ebe72d1ab55b2617bee8375b5f11616e_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:4ed9ab5ffc8c4fb0dc4c9faaa13e63c81dd40e2e04784bd7f48e81a0bd734a14_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:92230ad9427b8002fca17de62427089eaa409edcaa39554a96cf16c23b41b1bd_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9@sha256:e8e78077943e22dfbf24b01d40f866954e39e783711a3ceab6c6f08e8e07fdce_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:5a1f7f5125b9fff4c8b415e93eaad7257af8ffb3b70823917cf0eec075484b8b_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:a47433ffe10df556b6bea4c0cc3c3f3ac508e1a9d6ab81981f7ab84afc34524c_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:ae032d3383977818eab9f396217d9de8053e6a0fe2657a21fec9b4bae58940ed_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-operator-rhel9@sha256:d2e664349d706e81882258dae2d18de73c65d09649e7ac74f5616ecb81f2ffbe_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2a8862c66d7bba87f0ab708d1644eb7c01840fc8f5b3b7373044aff4e219e000_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:2d091748418b3f6d3cdcc4b4d773c98c8a22cac2717ed5274a6d8c612af51f71_ppc64le",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:3589f0bf450892dbfe4bac6c5255ebec5109e1d5d2e102dfb8e3e5894427a9b5_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/registration-rhel9@sha256:4dfb3a2b2ea2a32c5cfc770c84fba0f158d2c759d3a6559b01efd365e4a19e52_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:2bc2bb010570cb1f65205b4c6f7f470e8b2242d1401f4d0ab8ba08bdabacefeb_amd64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:495dece80910102a98e78394ca35ee5c4703d32f705f43f9813312872dd8b528_arm64",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:86ed174f04e82706d3c5a793fc94c5f3ff78ef7a442056e9ffbfdf04543e47e8_s390x",
"multicluster engine for Kubernetes 2.7:registry.redhat.io/multicluster-engine/work-rhel9@sha256:a80ab7578c04779f5a91eb489efe6dfa821c2f22fad92f34864402604ae6d89a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig"
}
]
}
RHSA-2026:5645
Vulnerability from csaf_redhat - Published: 2026-03-24 15:38 - Updated: 2026-07-01 06:14A flaw was found in database/sql. Concurrent queries can produce unexpected results when a query is cancelled during a Scan method call on returned Rows, creating a race condition. This vulnerability allows an attacker who can initiate and cancel queries to trigger this condition, possibly leading to inconsistent data being returned to the application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
|
A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cert-manager Operator for Red Hat OpenShift 1.17.1",
"title": "Topic"
},
{
"category": "general",
"text": "The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities\nand certificates as first-class resource types in the Kubernetes API. This makes it possible to provide\ncertificates-as-a-service to developers working within your Kubernetes cluster.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5645",
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47907",
"url": "https://access.redhat.com/security/cve/CVE-2025-47907"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html",
"url": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5645.json"
}
],
"title": "Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.17.1",
"tracking": {
"current_release_date": "2026-07-01T06:14:14+00:00",
"generator": {
"date": "2026-07-01T06:14:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5645",
"initial_release_date": "2026-03-24T15:38:55+00:00",
"revision_history": [
{
"date": "2026-03-24T15:38:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T15:39:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T06:14:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cert Manager support for Red Hat OpenShift release 1.17",
"product": {
"name": "Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cert_manager:1.17::el9"
}
}
}
],
"category": "product_family",
"name": "Cert Manager support for Red Hat OpenShift release"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774341716"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3Aabcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774342146"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Aa1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774341716"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774342146"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Ac73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774341716"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774342146"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774341716"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1774342146"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64 as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64 as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64 as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64 as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le as a component of Cert Manager support for Red Hat OpenShift release 1.17",
"product_id": "Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le",
"relates_to_product_reference": "Cert Manager support for Red Hat OpenShift release 1.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47907",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2025-08-07T16:01:06.247481+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2387083"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in database/sql. Concurrent queries can produce unexpected results when a query is cancelled during a Scan method call on returned Rows, creating a race condition. This vulnerability allows an attacker who can initiate and cancel queries to trigger this condition, possibly leading to inconsistent data being returned to the application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "database/sql: Postgres Scan Race Condition",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Moderate severity issues rather than Important. The os/exec LookPath flaw requires a misconfigured PATH to be exploitable, and the database/sql race condition primarily impacts applications that cancel queries while running multiple queries concurrently. Both can cause unexpected behavior, but the exploitation scope is limited and unlikely to result in direct compromise in most typical deployments.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47907"
},
{
"category": "external",
"summary": "RHBZ#2387083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47907",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47907"
},
{
"category": "external",
"summary": "https://go.dev/cl/693735",
"url": "https://go.dev/cl/693735"
},
{
"category": "external",
"summary": "https://go.dev/issue/74831",
"url": "https://go.dev/issue/74831"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/x5MKroML2yM",
"url": "https://groups.google.com/g/golang-announce/c/x5MKroML2yM"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3849",
"url": "https://pkg.go.dev/vuln/GO-2025-3849"
}
],
"release_date": "2025-08-07T15:25:30.704000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "database/sql: Postgres Scan Race Condition"
},
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T15:38:55+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5645"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3a01605ba6dd883043f622596c54bfdfc938cdab48f4c32638e6cad807c57e9a_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:42f78dae41109753d076a75c14a9bc16096575cfdea102fdeda252665ff0381f_ppc64le",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:4974faad72c7c67e6d55f7bf8c9c2d752af17a2f48ef63153fe226b080d36132_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:abcdf8c79fe663805d3bd5e43ac73b0472b5dab8c9dd80c90e1cf54ff161f41f_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:6a2828505d9760b9d4f27d5eafa05db0d025b45787828bc5e125b7c75d1f329f_arm64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:9011ffee4064e0f466d6bc27c54f60ec2e1f041d1240548101d9ed9e0254df12_amd64",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:a1bfde47d53ed34e899229870228ce35230fa216ade3e348befd9b77c2c7ceea_s390x",
"Cert Manager support for Red Hat OpenShift release 1.17:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:c73275043cc2caad071a88cb63f3745471fae11a953291b3dd93db4d752b1b13_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:5649
Vulnerability from csaf_redhat - Published: 2026-03-24 16:17 - Updated: 2026-07-01 00:12A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64 | — |
Workaround
|
A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.3.2 release of Red Hat Trusted Artifact Signer OpenShift Operator.\nFor more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19 and 4.20",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5649",
"url": "https://access.redhat.com/errata/RHSA-2026:5649"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27606",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5649.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-07-01T00:12:23+00:00",
"generator": {
"date": "2026-07-01T00:12:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5649",
"initial_release_date": "2026-03-24T16:17:51+00:00",
"revision_history": [
{
"date": "2026-03-24T16:17:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T16:18:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:12:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.3",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"product_id": "registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtas-console-rhel9@sha256%3A7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1774254230"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64",
"product_id": "registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtas-console-ui-rhel9@sha256%3Ad23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1773934794"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64 as a component of Red Hat Trusted Artifact Signer 1.3",
"product_id": "Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T16:17:51+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5649"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2026-27606",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-02-25T04:01:24.449922+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442530"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "RHBZ#2442530",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442530"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27606",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27606"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2",
"url": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e",
"url": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3",
"url": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v2.80.0",
"url": "https://github.com/rollup/rollup/releases/tag/v2.80.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v3.30.0",
"url": "https://github.com/rollup/rollup/releases/tag/v3.30.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v4.59.0",
"url": "https://github.com/rollup/rollup/releases/tag/v4.59.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc"
}
],
"release_date": "2026-02-25T02:08:06.682000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T16:17:51+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.3/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5649"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-rhel9@sha256:7f9dcc3503ef31563733eb925c6c15ce0d945069f1369692456c49361c60a399_amd64",
"Red Hat Trusted Artifact Signer 1.3:registry.redhat.io/rhtas/rhtas-console-ui-rhel9@sha256:d23bf73126fb5c18ff24369bb05c7adb03e9f3fefdbb49795b8aeb3d7c223cdb_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability"
}
]
}
RHSA-2026:5665
Vulnerability from csaf_redhat - Published: 2026-03-24 18:02 - Updated: 2026-07-01 00:12A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A flaw was found the Pillow Python imaging library. Providing a specially crafted PSD image may lead to an out-of-bounds write. This could potentially allow for arbitrary code execution or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A validation flaw has been discovered in the python cryptography package. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification (ECDSA) and shared key negotiation (ECDH). When the victim computes the shared secret as S = [victim_private_key]P via ECDH, this leaks information about victim_private_key mod (small_subgroup_order). For curves with cofactor > 1, this reveals the least significant bits of the private key. When these weak public keys are used in ECDSA , it's easy to forge signatures on the small subgroup. Only SECT curves are impacted by this.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
A flaw was found in pypdf. Processing a specially crafted PDF document, specifically with circular /Prev references in the cross-reference (xref) chain, can cause an infinite loop and a high consumption of CPU, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
A flaw was found in Authlib, a Python library used for creating secure authentication and authorization systems. This vulnerability, known as JWK (JSON Web Key) Header Injection, affects how Authlib verifies digital signatures in JWS (JSON Web Signature) tokens. An attacker can exploit this by creating a specially crafted token that includes their own cryptographic key in the header. When the system attempts to verify this token without a predefined key, it mistakenly uses the attacker's key, allowing them to bypass authentication and gain unauthorized access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a "none" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.10.19 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.10.19",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5665",
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25639",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25990",
"url": "https://access.redhat.com/security/cve/CVE-2026-25990"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26007",
"url": "https://access.redhat.com/security/cve/CVE-2026-26007"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26996",
"url": "https://access.redhat.com/security/cve/CVE-2026-26996"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27606",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27628",
"url": "https://access.redhat.com/security/cve/CVE-2026-27628"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27904",
"url": "https://access.redhat.com/security/cve/CVE-2026-27904"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27962",
"url": "https://access.redhat.com/security/cve/CVE-2026-27962"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-28802",
"url": "https://access.redhat.com/security/cve/CVE-2026-28802"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5665.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.10.19",
"tracking": {
"current_release_date": "2026-07-01T00:12:23+00:00",
"generator": {
"date": "2026-07-01T00:12:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5665",
"initial_release_date": "2026-03-24T18:02:58+00:00",
"revision_history": [
{
"date": "2026-03-24T18:02:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-24T18:03:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:12:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.10",
"product": {
"name": "Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774022275"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021695"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774022278"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Afe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021704"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772739218"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772726823"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Acaa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772725047"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3Ae165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774022285"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ade004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021722"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ac0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773971077"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021695"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021704"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Aba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1772726823"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1772725047"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021722"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773971077"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aedd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021695"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021704"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1772726823"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ad59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1772725047"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1774021722"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Af6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773971077"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25639",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"discovery_date": "2026-02-09T21:00:49.280114+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2438237"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "RHBZ#2438237",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2438237"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57",
"url": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.13.5",
"url": "https://github.com/axios/axios/releases/tag/v1.13.5"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433",
"url": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433"
}
],
"release_date": "2026-02-09T20:11:22.374000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig"
},
{
"cve": "CVE-2026-25990",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-02-11T21:05:39.535631+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439170"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found the Pillow Python imaging library. Providing a specially crafted PSD image may lead to an out-of-bounds write. This could potentially allow for arbitrary code execution or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25990"
},
{
"category": "external",
"summary": "RHBZ#2439170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439170"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25990"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25990",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25990"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/commit/9000313cc5d4a31bdcdd6d7f0781101abab553aa",
"url": "https://github.com/python-pillow/Pillow/commit/9000313cc5d4a31bdcdd6d7f0781101abab553aa"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-cfh3-3jmp-rvhc",
"url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-cfh3-3jmp-rvhc"
}
],
"release_date": "2026-02-11T20:53:52.524000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image"
},
{
"cve": "CVE-2026-26007",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"discovery_date": "2026-02-10T22:01:01.036116+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2438762"
}
],
"notes": [
{
"category": "description",
"text": "A validation flaw has been discovered in the python cryptography package. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification (ECDSA) and shared key negotiation (ECDH). When the victim computes the shared secret as S = [victim_private_key]P via ECDH, this leaks information about victim_private_key mod (small_subgroup_order). For curves with cofactor \u003e 1, this reveals the least significant bits of the private key. When these weak public keys are used in ECDSA , it\u0027s easy to forge signatures on the small subgroup. Only SECT curves are impacted by this.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw, while difficult to exploit, would lead to a loss of integrity in the encrypted communication channel. Given that the cryptography package is a library, it is likely to be used in situations that do not require user interaction.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26007"
},
{
"category": "external",
"summary": "RHBZ#2438762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2438762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26007",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26007"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26007",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26007"
},
{
"category": "external",
"summary": "https://github.com/pyca/cryptography/commit/0eebb9dbb6343d9bc1d91e5a2482ed4e054a6d8c",
"url": "https://github.com/pyca/cryptography/commit/0eebb9dbb6343d9bc1d91e5a2482ed4e054a6d8c"
},
{
"category": "external",
"summary": "https://github.com/pyca/cryptography/security/advisories/GHSA-r6ph-v2qm-q3c2",
"url": "https://github.com/pyca/cryptography/security/advisories/GHSA-r6ph-v2qm-q3c2"
}
],
"release_date": "2026-02-10T21:42:56.471000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves"
},
{
"cve": "CVE-2026-26996",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-20T04:01:11.896063+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441268"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "minimatch: minimatch: Denial of Service via specially crafted glob patterns",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26996"
},
{
"category": "external",
"summary": "RHBZ#2441268",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441268"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26996"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5",
"url": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26",
"url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26"
}
],
"release_date": "2026-02-20T03:05:21.105000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "minimatch: minimatch: Denial of Service via specially crafted glob patterns"
},
{
"cve": "CVE-2026-27606",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-02-25T04:01:24.449922+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442530"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "RHBZ#2442530",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442530"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27606",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27606"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2",
"url": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e",
"url": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3",
"url": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v2.80.0",
"url": "https://github.com/rollup/rollup/releases/tag/v2.80.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v3.30.0",
"url": "https://github.com/rollup/rollup/releases/tag/v3.30.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v4.59.0",
"url": "https://github.com/rollup/rollup/releases/tag/v4.59.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc"
}
],
"release_date": "2026-02-25T02:08:06.682000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability"
},
{
"cve": "CVE-2026-27628",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2026-02-25T04:02:09.864561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442543"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pypdf. Processing a specially crafted PDF document, specifically with circular /Prev references in the cross-reference (xref) chain, can cause an infinite loop and a high consumption of CPU, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pypdf: possible infinite loop when loading circular /Prev entries in cross-reference streams",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a crafted PDF file to be processed by an application using the pypdf library. This issue can cause the application to enter an infinite loop and consume a high amount of CPU resources, eventually resulting in a denial of service with no other security impact. Due to these reasons, this vulnerability has been rated with a moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27628"
},
{
"category": "external",
"summary": "RHBZ#2442543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27628",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27628"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27628",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27628"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/commit/0fbd95938724ad2d72688d4112207c0590f0483f",
"url": "https://github.com/py-pdf/pypdf/commit/0fbd95938724ad2d72688d4112207c0590f0483f"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/issues/3654",
"url": "https://github.com/py-pdf/pypdf/issues/3654"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/security/advisories/GHSA-2rw7-x74f-jg35",
"url": "https://github.com/py-pdf/pypdf/security/advisories/GHSA-2rw7-x74f-jg35"
}
],
"release_date": "2026-02-25T02:45:37.543000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "pypdf: possible infinite loop when loading circular /Prev entries in cross-reference streams"
},
{
"cve": "CVE-2026-27904",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-26T02:01:23.004531+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442922"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27904"
},
{
"category": "external",
"summary": "RHBZ#2442922",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442922"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27904",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27904"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74",
"url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74"
}
],
"release_date": "2026-02-26T01:07:42.693000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions"
},
{
"cve": "CVE-2026-27962",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-03-16T18:02:07.041902+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448164"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Authlib, a Python library used for creating secure authentication and authorization systems. This vulnerability, known as JWK (JSON Web Key) Header Injection, affects how Authlib verifies digital signatures in JWS (JSON Web Signature) tokens. An attacker can exploit this by creating a specially crafted token that includes their own cryptographic key in the header. When the system attempts to verify this token without a predefined key, it mistakenly uses the attacker\u0027s key, allowing them to bypass authentication and gain unauthorized access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib: Authentication bypass due to JWK Header Injection vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This critical vulnerability in Authlib\u0027s JWS implementation allows unauthenticated attackers to forge JWTs by embedding their own cryptographic key in the token header. Impact is high to confidentiality and integrity as attackers can bypass authentication.\n\nThe impact for Red Hat Quay is rated as low because it imports authlib solely as a JWK parsing utility and performs all JWT signature verification through PyJWT, so the vulnerable jws.deserialize_compact() code path is never called.\n\nRed Hat OpenShift AI is not affected, since authlib is only present as a transitive dependency in the dev dependency group and is not included in production image builds, so the vulnerable code is not present in the shipped product.\n\nRed Hat Satellite is not affected, as authlib is only present as a dependency of fastmcp. In Satellite, fastmcp only invokes authlib using jwt.decode() which isn\u0027t able to reach the vulnerability condition even with key=none.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27962"
},
{
"category": "external",
"summary": "RHBZ#2448164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448164"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27962",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27962"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27962",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27962"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/a5d4b2d4c9e46bfa11c82f85fdc2bcc0b50ae681",
"url": "https://github.com/authlib/authlib/commit/a5d4b2d4c9e46bfa11c82f85fdc2bcc0b50ae681"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/releases/tag/v1.6.9",
"url": "https://github.com/authlib/authlib/releases/tag/v1.6.9"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5"
}
],
"release_date": "2026-03-16T17:34:38.946000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "authlib: Authlib: Authentication bypass due to JWK Header Injection vulnerability"
},
{
"cve": "CVE-2026-28802",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-03-06T07:01:49.366979+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445120"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib: Signature verification bypass via malicious JWT allows unauthorized access",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-28802"
},
{
"category": "external",
"summary": "RHBZ#2445120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-28802",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28802"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75",
"url": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/b87c32ed07b8ae7f805873e1c9cafd1016761df7",
"url": "https://github.com/authlib/authlib/commit/b87c32ed07b8ae7f805873e1c9cafd1016761df7"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg"
}
],
"release_date": "2026-03-06T06:44:26.402000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-24T18:02:58+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5665"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:733de3a7351b69265aee8d12c7fe65f60e099c923510758a75c8800409126c41_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:caa20d6002cfd42dc4ab86dee5dde07da0a7e1dcc310c9be33bf28a2df1ef82b_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:d59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:3fb6c2af69237c3ff2cd326bc655028392a2d11c9162b85a9c4a762cbe7d044b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:4d88d159b8a0e46a8508735f555179c6b08caef62d42e5fb676fdac10e333f58_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:fe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:5558d6af86f65a79c88f1ffe290b49219d0f00c93ec8a03f0e81d0e9e13501fc_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:9e96b505901615f671d5b99094bda544ecbce32a3772125f2baf5f0ea67d5687_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:ba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6bf4ab153aa99b67b1e3fe0cbf0fa3e3694d3394c957fc03a5578d03cb2e88bc_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:720000552d67523e437f0638abf185ae32040f1437225fc461be499490494ce7_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:edd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:e165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0731cf4122bec0cef7c4f05ee19fe43871d977515c91e0decce981abeab85af6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:0c8ad49237e784b6bcaf48c62928533a231026b1605926edee0313d3a83c10c4_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:de004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:6e13793ca8f309ec0b69ae609b840ff0f41989d88cd4bba127e1b0040631367e_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:c0d00643c4ac6f84e5327192a29c6353b5dcac34d483d0a3e5f39d366127fcc2_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:f6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib: Signature verification bypass via malicious JWT allows unauthorized access"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.