Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-61729 (GCVE-0-2025-61729)
Vulnerability from cvelistv5 – Published: 2025-12-02 18:54 – Updated: 2025-12-03 19:37- CWE-400 - Uncontrolled Resource Consumption
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | crypto/x509 |
Affected:
0 , < 1.24.11
(semver)
Affected: 1.25.0 , < 1.25.5 (semver) |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-61729",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-02T21:52:36.341575Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-02T21:52:58.224Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "crypto/x509",
"product": "crypto/x509",
"programRoutines": [
{
"name": "Certificate.VerifyHostname"
},
{
"name": "Certificate.Verify"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.24.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.25.5",
"status": "affected",
"version": "1.25.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Philippe Antoine (Catena cyber)"
}
],
"descriptions": [
{
"lang": "en",
"value": "Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-03T19:37:14.903Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/725920"
},
{
"url": "https://go.dev/issue/76445"
},
{
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"title": "Excessive resource consumption when printing error string for host certificate validation in crypto/x509"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-61729",
"datePublished": "2025-12-02T18:54:10.166Z",
"dateReserved": "2025-09-30T15:05:03.605Z",
"dateUpdated": "2025-12-03T19:37:14.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-61729",
"date": "2026-06-30",
"epss": "0.00451",
"percentile": "0.35925"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-61729\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-12-02T19:15:51.447\",\"lastModified\":\"2026-06-17T09:50:48.507\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"crypto/x509\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"crypto/x509\",\"programRoutines\":[{\"name\":\"Certificate.VerifyHostname\"},{\"name\":\"Certificate.Verify\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.24.11\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.25.0\",\"lessThan\":\"1.25.5\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-12-02T21:52:36.341575Z\",\"id\":\"CVE-2025-61729\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.24.11\",\"matchCriteriaId\":\"F2E6FD2A-A487-4099-B91D-2429F286AC6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.25.0\",\"versionEndExcluding\":\"1.25.5\",\"matchCriteriaId\":\"39C03A37-B94B-46E4-B1C2-A70A870F8E53\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/725920\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/76445\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-4155\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-61729\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-02T21:52:36.341575Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-02T21:52:53.822Z\"}}], \"cna\": {\"title\": \"Excessive resource consumption when printing error string for host certificate validation in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Philippe Antoine (Catena cyber)\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.24.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.25.0\", \"lessThan\": \"1.25.5\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Certificate.VerifyHostname\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/725920\"}, {\"url\": \"https://go.dev/issue/76445\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-4155\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-61729\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\", \"dateReserved\": \"2025-09-30T15:05:03.605Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2025-12-02T18:54:10.166Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:4753
Vulnerability from csaf_redhat - Published: 2026-03-17 11:44 - Updated: 2026-07-01 00:16A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for osbuild-composer is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4753",
"url": "https://access.redhat.com/errata/RHSA-2026:4753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4753.json"
}
],
"title": "Red Hat Security Advisory: osbuild-composer security update",
"tracking": {
"current_release_date": "2026-07-01T00:16:56+00:00",
"generator": {
"date": "2026-07-01T00:16:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4753",
"initial_release_date": "2026-03-17T11:44:32+00:00",
"revision_history": [
{
"date": "2026-03-17T11:44:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-17T11:44:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:16:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-core-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-core-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@75-7.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"product_id": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@75-7.el8_8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-core-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-core-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-dnf-json@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-worker-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-worker-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debugsource@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-core-debuginfo@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-debuginfo@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-tests-debuginfo@75-7.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"product": {
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"product_id": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer-worker-debuginfo@75-7.el8_8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "osbuild-composer-0:75-7.el8_8.src",
"product": {
"name": "osbuild-composer-0:75-7.el8_8.src",
"product_id": "osbuild-composer-0:75-7.el8_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/osbuild-composer@75-7.el8_8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:75-7.el8_8.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src"
},
"product_reference": "osbuild-composer-0:75-7.el8_8.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-core-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-core-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-worker-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:75-7.el8_8.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src"
},
"product_reference": "osbuild-composer-0:75-7.el8_8.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-core-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-worker-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
},
"product_reference": "osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-17T11:44:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4753"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-17T11:44:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4753"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.E4S:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.ppc64le",
"AppStream-8.8.0.Z.E4S:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.src",
"AppStream-8.8.0.Z.TUS:osbuild-composer-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-core-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-debugsource-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-dnf-json-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-tests-debuginfo-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-0:75-7.el8_8.x86_64",
"AppStream-8.8.0.Z.TUS:osbuild-composer-worker-debuginfo-0:75-7.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:4892
Vulnerability from csaf_redhat - Published: 2026-03-18 08:06 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4892",
"url": "https://access.redhat.com/errata/RHSA-2026:4892"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4892.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:13:28+00:00",
"generator": {
"date": "2026-07-01T00:13:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4892",
"initial_release_date": "2026-03-18T08:06:26+00:00",
"revision_history": [
{
"date": "2026-03-18T08:06:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T08:06:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.4-2.el10_1.src",
"product": {
"name": "rhc-1:0.3.4-2.el10_1.src",
"product_id": "rhc-1:0.3.4-2.el10_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.4-2.el10_1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.4-2.el10_1.aarch64",
"product": {
"name": "rhc-1:0.3.4-2.el10_1.aarch64",
"product_id": "rhc-1:0.3.4-2.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.4-2.el10_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"product": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"product_id": "rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.4-2.el10_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"product": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"product_id": "rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.4-2.el10_1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.4-2.el10_1.ppc64le",
"product": {
"name": "rhc-1:0.3.4-2.el10_1.ppc64le",
"product_id": "rhc-1:0.3.4-2.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.4-2.el10_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"product": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"product_id": "rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.4-2.el10_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"product": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"product_id": "rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.4-2.el10_1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.4-2.el10_1.s390x",
"product": {
"name": "rhc-1:0.3.4-2.el10_1.s390x",
"product_id": "rhc-1:0.3.4-2.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.4-2.el10_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"product": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"product_id": "rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.4-2.el10_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"product": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"product_id": "rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.4-2.el10_1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.4-2.el10_1.x86_64",
"product": {
"name": "rhc-1:0.3.4-2.el10_1.x86_64",
"product_id": "rhc-1:0.3.4-2.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.4-2.el10_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.4-2.el10_1.x86_64",
"product": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.x86_64",
"product_id": "rhc-debugsource-1:0.3.4-2.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.4-2.el10_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"product_id": "rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.4-2.el10_1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.4-2.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64"
},
"product_reference": "rhc-1:0.3.4-2.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.4-2.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le"
},
"product_reference": "rhc-1:0.3.4-2.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.4-2.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x"
},
"product_reference": "rhc-1:0.3.4-2.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.4-2.el10_1.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src"
},
"product_reference": "rhc-1:0.3.4-2.el10_1.src",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.4-2.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64"
},
"product_reference": "rhc-1:0.3.4-2.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64"
},
"product_reference": "rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x"
},
"product_reference": "rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.4-2.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64"
},
"product_reference": "rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x"
},
"product_reference": "rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.4-2.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
},
"product_reference": "rhc-debugsource-1:0.3.4-2.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T08:06:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4892"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T08:06:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4892"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T08:06:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4892"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.src",
"AppStream-10.1.Z:rhc-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debuginfo-1:0.3.4-2.el10_1.x86_64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.aarch64",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.ppc64le",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.s390x",
"AppStream-10.1.Z:rhc-debugsource-1:0.3.4-2.el10_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:4901
Vulnerability from csaf_redhat - Published: 2026-03-18 11:07 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4901",
"url": "https://access.redhat.com/errata/RHSA-2026:4901"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4901.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:13:29+00:00",
"generator": {
"date": "2026-07-01T00:13:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4901",
"initial_release_date": "2026-03-18T11:07:06+00:00",
"revision_history": [
{
"date": "2026-03-18T11:07:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T11:07:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.7-2.el9_7.src",
"product": {
"name": "rhc-1:0.2.7-2.el9_7.src",
"product_id": "rhc-1:0.2.7-2.el9_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.7-2.el9_7?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.7-2.el9_7.aarch64",
"product": {
"name": "rhc-1:0.2.7-2.el9_7.aarch64",
"product_id": "rhc-1:0.2.7-2.el9_7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.7-2.el9_7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"product": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"product_id": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.7-2.el9_7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"product": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"product_id": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.7-2.el9_7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-devel-1:0.2.7-2.el9_7.aarch64",
"product": {
"name": "rhc-devel-1:0.2.7-2.el9_7.aarch64",
"product_id": "rhc-devel-1:0.2.7-2.el9_7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-devel@0.2.7-2.el9_7?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.7-2.el9_7.ppc64le",
"product": {
"name": "rhc-1:0.2.7-2.el9_7.ppc64le",
"product_id": "rhc-1:0.2.7-2.el9_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.7-2.el9_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"product": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"product_id": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.7-2.el9_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"product": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"product_id": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.7-2.el9_7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"product": {
"name": "rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"product_id": "rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-devel@0.2.7-2.el9_7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.7-2.el9_7.x86_64",
"product": {
"name": "rhc-1:0.2.7-2.el9_7.x86_64",
"product_id": "rhc-1:0.2.7-2.el9_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.7-2.el9_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"product": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"product_id": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.7-2.el9_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"product_id": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.7-2.el9_7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-devel-1:0.2.7-2.el9_7.x86_64",
"product": {
"name": "rhc-devel-1:0.2.7-2.el9_7.x86_64",
"product_id": "rhc-devel-1:0.2.7-2.el9_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-devel@0.2.7-2.el9_7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.7-2.el9_7.s390x",
"product": {
"name": "rhc-1:0.2.7-2.el9_7.s390x",
"product_id": "rhc-1:0.2.7-2.el9_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.7-2.el9_7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"product": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"product_id": "rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.7-2.el9_7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"product": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"product_id": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.7-2.el9_7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-devel-1:0.2.7-2.el9_7.s390x",
"product": {
"name": "rhc-devel-1:0.2.7-2.el9_7.s390x",
"product_id": "rhc-devel-1:0.2.7-2.el9_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-devel@0.2.7-2.el9_7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.7-2.el9_7.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src"
},
"product_reference": "rhc-1:0.2.7-2.el9_7.src",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-devel-1:0.2.7-2.el9_7.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64"
},
"product_reference": "rhc-devel-1:0.2.7-2.el9_7.aarch64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-devel-1:0.2.7-2.el9_7.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le"
},
"product_reference": "rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-devel-1:0.2.7-2.el9_7.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x"
},
"product_reference": "rhc-devel-1:0.2.7-2.el9_7.s390x",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-devel-1:0.2.7-2.el9_7.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
},
"product_reference": "rhc-devel-1:0.2.7-2.el9_7.x86_64",
"relates_to_product_reference": "CRB-9.7.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T11:07:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4901"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T11:07:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4901"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T11:07:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4901"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.src",
"AppStream-9.7.0.Z.MAIN:rhc-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"AppStream-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debuginfo-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-debugsource-1:0.2.7-2.el9_7.x86_64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.aarch64",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.ppc64le",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.s390x",
"CRB-9.7.0.Z.MAIN:rhc-devel-1:0.2.7-2.el9_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:4907
Vulnerability from csaf_redhat - Published: 2026-03-18 10:44 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4907",
"url": "https://access.redhat.com/errata/RHSA-2026:4907"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4907.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:13:30+00:00",
"generator": {
"date": "2026-07-01T00:13:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4907",
"initial_release_date": "2026-03-18T10:44:01+00:00",
"revision_history": [
{
"date": "2026-03-18T10:44:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T10:44:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.2-2.el10_0.src",
"product": {
"name": "rhc-1:0.3.2-2.el10_0.src",
"product_id": "rhc-1:0.3.2-2.el10_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.2-2.el10_0?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.2-2.el10_0.aarch64",
"product": {
"name": "rhc-1:0.3.2-2.el10_0.aarch64",
"product_id": "rhc-1:0.3.2-2.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.2-2.el10_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"product": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"product_id": "rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.2-2.el10_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"product": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"product_id": "rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.2-2.el10_0?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.2-2.el10_0.ppc64le",
"product": {
"name": "rhc-1:0.3.2-2.el10_0.ppc64le",
"product_id": "rhc-1:0.3.2-2.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.2-2.el10_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"product": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"product_id": "rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.2-2.el10_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"product": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"product_id": "rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.2-2.el10_0?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.2-2.el10_0.s390x",
"product": {
"name": "rhc-1:0.3.2-2.el10_0.s390x",
"product_id": "rhc-1:0.3.2-2.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.2-2.el10_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"product": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"product_id": "rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.2-2.el10_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"product": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"product_id": "rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.2-2.el10_0?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.3.2-2.el10_0.x86_64",
"product": {
"name": "rhc-1:0.3.2-2.el10_0.x86_64",
"product_id": "rhc-1:0.3.2-2.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.3.2-2.el10_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.3.2-2.el10_0.x86_64",
"product": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.x86_64",
"product_id": "rhc-debugsource-1:0.3.2-2.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.3.2-2.el10_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"product_id": "rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.3.2-2.el10_0?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.2-2.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64"
},
"product_reference": "rhc-1:0.3.2-2.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.2-2.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le"
},
"product_reference": "rhc-1:0.3.2-2.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.2-2.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x"
},
"product_reference": "rhc-1:0.3.2-2.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.2-2.el10_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src"
},
"product_reference": "rhc-1:0.3.2-2.el10_0.src",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.3.2-2.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64"
},
"product_reference": "rhc-1:0.3.2-2.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64"
},
"product_reference": "rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x"
},
"product_reference": "rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.3.2-2.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64"
},
"product_reference": "rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x"
},
"product_reference": "rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.3.2-2.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
},
"product_reference": "rhc-debugsource-1:0.3.2-2.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T10:44:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4907"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T10:44:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4907"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T10:44:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4907"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.src",
"AppStream-10.0.Z.E2S:rhc-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debuginfo-1:0.3.2-2.el10_0.x86_64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.aarch64",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.ppc64le",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.s390x",
"AppStream-10.0.Z.E2S:rhc-debugsource-1:0.3.2-2.el10_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:4936
Vulnerability from csaf_redhat - Published: 2026-03-18 15:36 - Updated: 2026-07-01 00:16A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64 | — | ||
| Unresolved product id: Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenStack Services on OpenShift (RHOSO) 18.0.17 containers are now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Services on OpenShift is a hybrid cloud solution\nfor deploying and managing virtualized and containerized applications in a\nscalable infrastructure with a Red Hat OpenShift Container Platform (RHOCP)\ncontrol plane.\n\nSecurity Fix(es):\n\n* golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4936",
"url": "https://access.redhat.com/errata/RHSA-2026:4936"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/search",
"url": "https://catalog.redhat.com/software/containers/search"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4936.json"
}
],
"title": "Red Hat Security Advisory: Release of containers for RHOSO 18.0.17 security update",
"tracking": {
"current_release_date": "2026-07-01T00:16:57+00:00",
"generator": {
"date": "2026-07-01T00:16:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4936",
"initial_release_date": "2026-03-18T15:36:04+00:00",
"revision_history": [
{
"date": "2026-03-18T15:36:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T15:36:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:16:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenStack Services on OpenShift 18",
"product": {
"name": "Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:18.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Services on OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"product_id": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/barbican-rhel9-operator@sha256%3A11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771406342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"product_id": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cinder-rhel9-operator@sha256%3Af36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334744"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"product_id": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/designate-rhel9-operator@sha256%3A3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334741"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"product_id": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/edpm-hardened-uefi-rhel9@sha256%3A6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771352104"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"product_id": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/glance-rhel9-operator@sha256%3A9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334271"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"product_id": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"product_identification_helper": {
"purl": "pkg:oci/heat-rhel9-operator@sha256%3A0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334305"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"product_id": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/horizon-rhel9-operator@sha256%3A34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334481"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"product_id": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"product_identification_helper": {
"purl": "pkg:oci/infra-rhel9-operator@sha256%3A949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1773161372"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ironic-rhel9-operator@sha256%3A19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334739"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"product_id": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ironic-python-agent-rhel9@sha256%3Ab97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771351796"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"product_id": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keystone-rhel9-operator@sha256%3A08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334745"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"product_id": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/manila-rhel9-operator@sha256%3A9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334611"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"product_id": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mariadb-rhel9-operator@sha256%3A411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1772444546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"product_id": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mysqld-exporter-rhel9@sha256%3Ac06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334739"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"product_id": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"product_identification_helper": {
"purl": "pkg:oci/neutron-rhel9-operator@sha256%3Ac884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334255"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"product_id": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/nova-rhel9-operator@sha256%3A1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771335534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"product": {
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"product_id": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/octavia-amphora-image-rhel9@sha256%3A4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771352083"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"product_id": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/octavia-rhel9-operator@sha256%3Af02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771406342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ee-openstack-ansible-ee-rhel9@sha256%3Aaaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1772444517"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-api-rhel9@sha256%3Aee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358766"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-base-rhel9@sha256%3A9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355404"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-evaluator-rhel9@sha256%3A5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358706"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-listener-rhel9@sha256%3A9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358503"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-aodh-notifier-rhel9@sha256%3A9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358601"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-api-rhel9@sha256%3A8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356460"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-base-rhel9@sha256%3Ab29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-keystone-listener-rhel9@sha256%3A5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356470"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-barbican-worker-rhel9@sha256%3Acd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356404"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-baremetal-agent-rhel9@sha256%3A55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334631"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-baremetal-rhel9-operator@sha256%3A8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334689"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-base-rhel9@sha256%3A44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771351869"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-base-rhel9@sha256%3Ace45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355318"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-central-rhel9@sha256%3A2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356426"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-compute-rhel9@sha256%3A43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356481"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-ipmi-rhel9@sha256%3A0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356484"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ceilometer-notification-rhel9@sha256%3Abbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356426"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-api-rhel9@sha256%3A11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358896"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-backup-rhel9@sha256%3A002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358871"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-base-rhel9@sha256%3Ae2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355386"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-scheduler-rhel9@sha256%3A1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358897"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cinder-volume-rhel9@sha256%3Ac11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359227"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-api-rhel9@sha256%3Ae489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1772028420"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-base-rhel9@sha256%3A4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1772027072"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cloudkitty-processor-rhel9@sha256%3Ac9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1772028420"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-cron-rhel9@sha256%3A202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353626"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-dependencies-rhel9@sha256%3A6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353581"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-api-rhel9@sha256%3A725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357035"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-backend-bind9-rhel9@sha256%3A3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357039"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-base-rhel9@sha256%3Af6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355371"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-central-rhel9@sha256%3Aade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-mdns-rhel9@sha256%3A9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356986"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-producer-rhel9@sha256%3A9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356921"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-sink-rhel9@sha256%3Abda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356812"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-designate-worker-rhel9@sha256%3A2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356830"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-frr-rhel9@sha256%3A051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353559"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-glance-api-rhel9@sha256%3A6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355405"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-haproxy-rhel9@sha256%3A8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353592"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-api-cfn-rhel9@sha256%3A11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356825"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-api-rhel9@sha256%3Af4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356803"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-base-rhel9@sha256%3A02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355353"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-heat-engine-rhel9@sha256%3A64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356798"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-horizon-rhel9@sha256%3A2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355316"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-api-rhel9@sha256%3A4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359802"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-base-rhel9@sha256%3Ae9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355404"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-conductor-rhel9@sha256%3A7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359781"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-inspector-rhel9@sha256%3A82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359797"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-neutron-agent-rhel9@sha256%3Aa8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ironic-pxe-rhel9@sha256%3Aef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359764"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-iscsid-rhel9@sha256%3A12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355318"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-keystone-rhel9@sha256%3Aaef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-api-rhel9@sha256%3A298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771360263"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-base-rhel9@sha256%3A9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-scheduler-rhel9@sha256%3Afc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359098"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-manila-share-rhel9@sha256%3Aed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771359477"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-mariadb-rhel9@sha256%3Aef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353630"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-memcached-rhel9@sha256%3A2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353584"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-multipathd-rhel9@sha256%3A38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353554"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-must-gather-rhel9@sha256%3Aab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334694"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-netutils-rhel9@sha256%3A30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353513"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-network-exporter-rhel9@sha256%3Ad952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334740"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-agent-base-rhel9@sha256%3Af0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357864"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-base-rhel9@sha256%3A44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355386"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-dhcp-agent-rhel9@sha256%3A7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361868"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-metadata-agent-ovn-rhel9@sha256%3Affe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361875"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-ovn-agent-rhel9@sha256%3A0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361872"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-server-rhel9@sha256%3A136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357856"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-neutron-sriov-agent-rhel9@sha256%3A98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771357892"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-api-rhel9@sha256%3A8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358312"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-base-rhel9@sha256%3Abea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355357"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-compute-rhel9@sha256%3Af2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358287"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-conductor-rhel9@sha256%3A6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358339"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-novncproxy-rhel9@sha256%3Acd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358081"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-nova-scheduler-rhel9@sha256%3A32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358311"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-api-rhel9@sha256%3A80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356728"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-base-rhel9@sha256%3A14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355316"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-health-manager-rhel9@sha256%3A7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356714"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-housekeeping-rhel9@sha256%3Af2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356781"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-octavia-worker-rhel9@sha256%3A9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356712"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-openstackclient-rhel9@sha256%3Ac652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353553"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-operator-bundle@sha256%3Abcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1773162515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"product_id": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rhel9-operator@sha256%3Aca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334736"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-base-rhel9@sha256%3Ae57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353501"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-bgp-agent-rhel9@sha256%3A8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353545"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-controller-rhel9@sha256%3A8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771354687"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-nb-db-server-rhel9@sha256%3A814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771354564"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-northd-rhel9@sha256%3A89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771354555"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-ovn-sb-db-server-rhel9@sha256%3A0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771354544"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-placement-api-rhel9@sha256%3Aa39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355404"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rabbitmq-rhel9@sha256%3A4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353586"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-redis-rhel9@sha256%3A7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353588"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-rsyslog-rhel9@sha256%3A4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353584"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-account-rhel9@sha256%3A4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361778"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-base-rhel9@sha256%3A70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355406"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-container-rhel9@sha256%3A1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361757"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-object-rhel9@sha256%3Ac8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-swift-proxy-server-rhel9@sha256%3A801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771361855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-tempest-all-rhel9@sha256%3Aeda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771356749"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-tempest-rhel9@sha256%3A80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355381"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-unbound-rhel9@sha256%3A5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771353581"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-api-rhel9@sha256%3Ab5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358767"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-applier-rhel9@sha256%3Addff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358819"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-base-rhel9@sha256%3A4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771355371"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64",
"product": {
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64",
"product_id": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openstack-watcher-decision-engine-rhel9@sha256%3A391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2?arch=amd64\u0026repository_url=registry.redhat.io/rhoso\u0026tag=1771358607"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"product_id": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ovn-rhel9-operator@sha256%3Ad2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334754"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"product_id": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9-operator@sha256%3A220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334743"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"product_id": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/prometheus-podman-exporter-rhel9@sha256%3Acb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"product_id": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rabbitmq-cluster-rhel9-operator@sha256%3A9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334745"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"product_id": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"product_identification_helper": {
"purl": "pkg:oci/sg-core-rhel9@sha256%3A621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334600"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"product_id": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/swift-rhel9-operator@sha256%3A35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334388"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"product_id": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/telemetry-rhel9-operator@sha256%3Acaee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334351"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"product_id": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/test-rhel9-operator@sha256%3A32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334746"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"product": {
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"product_id": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/watcher-rhel9-operator@sha256%3Ae28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7?arch=amd64\u0026repository_url=registry.redhat.io/rhoso-operators\u0026tag=1771334739"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64"
},
"product_reference": "registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64"
},
"product_reference": "registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64 as a component of Red Hat OpenStack Services on OpenShift 18",
"product_id": "Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
},
"product_reference": "registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64",
"relates_to_product_reference": "Red Hat OpenStack Services on OpenShift 18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T15:36:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update as a new RHOSO 18.0 deployment, see \u201cDeploying Red Hat OpenStack Services on OpenShift\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/deploying_red_hat_openstack_services_on_openshift/index\n\nFor details on how to apply this update to an existing RHOSO 18.0 deployment, see \u201cUpdating your environment to the latest maintenance release\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/updating_your_environment_to_the_latest_maintenance_release/index",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4936"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T15:36:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update as a new RHOSO 18.0 deployment, see \u201cDeploying Red Hat OpenStack Services on OpenShift\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/deploying_red_hat_openstack_services_on_openshift/index\n\nFor details on how to apply this update to an existing RHOSO 18.0 deployment, see \u201cUpdating your environment to the latest maintenance release\u201d at https://docs.redhat.com/en/documentation/red_hat_openstack_services_on_openshift/18.0/html/updating_your_environment_to_the_latest_maintenance_release/index",
"product_ids": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4936"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/barbican-rhel9-operator@sha256:11a6cc1c3c4713b49b7af1e94e9bc3fd6781589a6567d612276dbc5eec4e8f7c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/cinder-rhel9-operator@sha256:f36ad3ae7e316cf5967d554c1d1d6a7b0f59f9ff538bcc26e15f71302f45cb17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/designate-rhel9-operator@sha256:3e076d59de9bd368fb847d3fc221082e489cf24939e019c15d0fb144fe13c2d0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ee-openstack-ansible-ee-rhel9@sha256:aaaf11593a9910514911fdf4a86c27fff5c4c61b3612ce741f148981f6844ef0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/glance-rhel9-operator@sha256:9d337e46a39ff30cc0b2ff5f8191d1dd3bc1cf4a33d3dc6a7c6ff9a20a769eba_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/heat-rhel9-operator@sha256:0561c665049b0e86422b602621fdf510715b2dd174ef40b1899368362d54b568_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/horizon-rhel9-operator@sha256:34f16d5733fd0d3e43a6ba8f6ac824e5600d93d2a46f1548a27060fed9208cae_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/infra-rhel9-operator@sha256:949190f3a7a42bee114e221efdb3febb257e7dc6eb37b2545e3643a60ce60885_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ironic-rhel9-operator@sha256:19c9b7a8b22d91e8d40bceae1bbcd3a46bad4dc6095921e19474d9f03b120cbd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/keystone-rhel9-operator@sha256:08932b5947dde52c129a4745161b0a49eed6923ebfe44a998269189046db44c2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/manila-rhel9-operator@sha256:9d0aa8312a32e08799198c752a8fb33a05882a6970c78611693e8cb7e8debc2f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mariadb-rhel9-operator@sha256:411ffb693b3d07bc4349c9085863a1a7f1ae191f20af214a5e6048a41bdee38b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/mysqld-exporter-rhel9@sha256:c06752aad666dc249b67dc0a80006f26e5253fc190e17c54ef7dfbb8eb3db106_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/neutron-rhel9-operator@sha256:c884596f0e5c08a95f1be5d76acb8de1ad11f559aa9ee7da4bcb5dd79469c053_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/nova-rhel9-operator@sha256:1b986a08969e648152d98b77270568a5807c92dc09c45f3341c9b9ee906a6d17_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/octavia-rhel9-operator@sha256:f02640c5a4cf304b52d00859e9566e7c06da62574e0a460610b8f4f5ed5f1ff4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-agent-rhel9@sha256:55539394b894f526c181064759e80b5e50ff43ac8ede66d4ddc6ce3cd9b8cbfd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-baremetal-rhel9-operator@sha256:8b916f800e50786e65aa5d64d6be3d5943f616cf831f78d2ae7fc0ad1e5553bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-must-gather-rhel9@sha256:ab86b53a49adf8ad2b9658076cba5c55b3a19552ff17ea178dfe346fc1ac9979_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-network-exporter-rhel9@sha256:d952fd4ed1993563f7056970268a9a3d95944b8750d2cb3355ab257c47364427_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-operator-bundle@sha256:bcc47951381f37e2cd0574bfff2031c420d7bac7abf4df6f61a2c0a7b0702c9f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/openstack-rhel9-operator@sha256:ca7938fd7c4f428280f66718983bc650e6506294ee18112f97dda5b4f14eebc7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/ovn-rhel9-operator@sha256:d2cc1931d0da2067d6921a72bbd5ce35691ff6a29261ef772dd9a7b8fa63bfb4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/placement-rhel9-operator@sha256:220371bf2b422d41ab6472aa12599d9bf244bc1785bc1dc73d89af8ed09cff8b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/prometheus-podman-exporter-rhel9@sha256:cb45e4320a47a5c40acf78ad7c2e0ff6ff69138b9f01e094be56c05c589193b9_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/rabbitmq-cluster-rhel9-operator@sha256:9f1e83a69d4ad4613471bb76cc83d439b033f545a7b22b6f8376cac6eae093fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/sg-core-rhel9@sha256:621fd63b431725e3df44bde8c95179e036c212493a6333121b83be087730ca50_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/swift-rhel9-operator@sha256:35b965498c5670f6729da032f5ad5bb8a027e17b89e3707d40e6fa0053cd489b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/telemetry-rhel9-operator@sha256:caee1f4b776309dc747a4ba6b3d702d4ab837e6e22fd3e9616bf9d8a7f4e763e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/test-rhel9-operator@sha256:32eaa293712852ac53f937db4439e7e2af1d2a5b150b1197311340f2fb03a95a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso-operators/watcher-rhel9-operator@sha256:e28ff823c75776ea45dc2c3e32b7d47771f250a8339bc846f3f4d321f86e6ef7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/edpm-hardened-uefi-rhel9@sha256:6089cb738955da9d5d200ee638505465d9d5c94f14891fa76b5f4eede05ede6b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/ironic-python-agent-rhel9@sha256:b97499cd7578b12d07bab82228f23383300ba347f6d7a39ac9a1845d3958970d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/octavia-amphora-image-rhel9@sha256:4d978629c661584c59bcc22ce1921da4883a3eeebf8d8b2310941cd02174fd76_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-api-rhel9@sha256:ee52d3b3f83bbadabc1a660778540e663efd04b63178289560359b371d68a27a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-base-rhel9@sha256:9695a1382b01cbc9d39dbd4028b50421eba8b6080717d4dac56f96e89a638260_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-evaluator-rhel9@sha256:5f7e32eec18173df8f017cc32f313ea5b947bac6f76db87795bbd0ee4a006361_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-listener-rhel9@sha256:9e2f15d4bc250c42a0a85c7c0ffc88014917e44758c52eb82b6f2166b0352e27_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-aodh-notifier-rhel9@sha256:9d06bcff2a2d4ade4d972b8050767cb23170efe806ed61f3c4432306aadcdae0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-api-rhel9@sha256:8da0d889fffeb479c78e8ca34c6b11040ea0529e790fa56a59686a177d4a70e7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-base-rhel9@sha256:b29b64a063a4551875035c4df9846ba8685d746d89fed48087cf68d5e68603e3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-keystone-listener-rhel9@sha256:5a6021057b14778d9245bbf2b67ccbfb04983d2cb765b6d9ab27c8367370f431_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-barbican-worker-rhel9@sha256:cd7c864f0f51d08b756b7738671da1f638702ac8be9d547c1731f0fdda3eb047_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-base-rhel9@sha256:44bc3c75326d85807c034f24fd59c0c6a27b67997d20b24d761c95c723c0c8ed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-base-rhel9@sha256:ce45550a2a414ee7f468d4a6dc91e0412082161e880062de4129ff7a2c981b89_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-central-rhel9@sha256:2c9dbffd15f417829ff801c445b65125e8f4927b43570005bd2e4203a76e0007_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-compute-rhel9@sha256:43e56f8b1d13aa71e42c550875ccd08a59716c801f008277211e002f55a8516f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-ipmi-rhel9@sha256:0e5c6cd40667ee1207798e2d9c567912db6571f8931f8c759aad89a789cb63e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ceilometer-notification-rhel9@sha256:bbe30ea8188acd71f64be4e30242cf9037e2d7349183146da037a697685c78bb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-api-rhel9@sha256:11bf1fd808d2d9944de165c6bdbd6db43f4f920ed2f60aa77f6c30a3c3fd83db_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-backup-rhel9@sha256:002649b594e1981aab9b148e112a292020e19d9f05746ab393aa9d539207d598_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-base-rhel9@sha256:e2b60e101cbe5380894df606d8de799123deb4ca8e3de22b08fbd93cd2c40266_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-scheduler-rhel9@sha256:1c8864d038a4d5d3e9cb2ffb82e2b415f8ff66ec2f344ecd7500b9773195084c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cinder-volume-rhel9@sha256:c11cede6a5c6347304bfdfe7364208eae065013335693e70f4c5591e06294783_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-api-rhel9@sha256:e489e92988817dcb14ba648025490ca30da95ec584f6debeaf028c322766f771_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-base-rhel9@sha256:4137eaa96004a60b511b92144b8053b0361f1de31bd41870ee130b69ede4eaf7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cloudkitty-processor-rhel9@sha256:c9ba7d0d9c7ce0d59809af42197324ece748911a568c2a73d6c1659179fafb39_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-cron-rhel9@sha256:202c84bc0f2602c0bb8371cdf3b14cc4f54f6b6befde37fe0309100bdb8c7e55_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-dependencies-rhel9@sha256:6256f4c16a143192f02c05711be7d6a7ac67e1f921a4731bfa859988626976b0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-api-rhel9@sha256:725356fe4a085b2e0879666b1e3e8203fd444f05f7728a619e1b24a6f6c2b163_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-backend-bind9-rhel9@sha256:3e80cd432b04ed930b40c7d7f9669b00ae27bc3bdbf58f0c61eaef7dea373643_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-base-rhel9@sha256:f6f5ffcc28dff51664d1545a38235832f75ff48382749be7e1202408b6c2ca03_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-central-rhel9@sha256:ade20de9e1871830d1619f1e13e97aae0d937736e555ee91963db10bb51392c5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-mdns-rhel9@sha256:9045eec6e34945a8d8e844bc7deabff96e28fb1a8d39919e01a05471744345e0_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-producer-rhel9@sha256:9d6c7817dd9d0ad433bacb85ac4d2938258a5915ad90937d74f6a9b9b6a93c37_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-sink-rhel9@sha256:bda75f3a290b69ac78bf809ebc72dc98900dd424393c4768ab48fa9450292b8f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-designate-worker-rhel9@sha256:2e8ee248bf01671b84742147414405160c846e220f74baffdd008a2a115bc00d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-frr-rhel9@sha256:051a6ac84cc1a858f70503a8a3353aedf203cc1c77b012811604bcbbf7678a1d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-glance-api-rhel9@sha256:6664a8ef7e94bc9ec4f897fbdcd04917c5560040f989127a2f856f2d525aee1c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-haproxy-rhel9@sha256:8ae5a5078fa9516dbf3bb408bef4daf6305df1ce64e049041bcd1d2493310573_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-cfn-rhel9@sha256:11db904dc4f440587b661770dca5fd0f5468c2adb6aec888216c3518a9ce99f3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-api-rhel9@sha256:f4bce1b39f5f13d6151a92ab661ac4825d59a8e2e415cea42ec3066e5ccc0c46_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-base-rhel9@sha256:02cb8c1e28a817d042b3e6568453c45f6fd9154e641f50248da9493dd6d0921e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-heat-engine-rhel9@sha256:64d46a6032767751dea04ce9530246a1652783de55fce1d7891351de47446c4a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-horizon-rhel9@sha256:2ec6b457c29e25345146c000d78c5f68d104eba0816130e06f0a284ab53836ab_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-api-rhel9@sha256:4bedd0eb5ddaa3d9e5f4a597223d724310305593170d7d49ba2d6f227d4b1def_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-base-rhel9@sha256:e9883cf5c6c1966e8da6213eb68a31ff01f99a08d065eaf667723d89f9d6cdf4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-conductor-rhel9@sha256:7c6133f290a11364b7c86689f8580566ad692c4070a65fa31105dd7d948bb2fb_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-inspector-rhel9@sha256:82133d27d0c55445455cc3e22a1bfb669e0bda611443af72c2d77437b118e91f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-neutron-agent-rhel9@sha256:a8031de32e385fda349f791736fcf591c23f8e4154c62dd71a3717b768b1617c_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ironic-pxe-rhel9@sha256:ef51aaa42cee5b169afd032224d6e86c3723a91ca980944caa3992c744f6dc38_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-iscsid-rhel9@sha256:12c3003bd4e3697a6a2ed13a6869d0e30a073aad309824231655b1d1edbf3b1b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-keystone-rhel9@sha256:aef6c3de5f1822f38e063329985183c1f4f05b691c7aa300b8a79040c0e3c3bc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-api-rhel9@sha256:298a6e300dad6e3f996b8a1291256145c0dfb0f7a63d12dd8731f584b291bc42_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-base-rhel9@sha256:9ba81ec225c87a8a7e631c373dfcb4b630b62b0b727d035dd8537ad188c732fc_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-scheduler-rhel9@sha256:fc7598d5a33ed44004284339a1c1ae4ab9939797b8bbac758eeeb4ee036c765d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-manila-share-rhel9@sha256:ed4f283d8c687c81b7badf62416fff7db852c2bab310a4acd5f90d94d162e802_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-mariadb-rhel9@sha256:ef9e45898dd8ca4761cdcedb921227facfe2cdf0724022603fc2880346402b22_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-memcached-rhel9@sha256:2d2167977da4405d27463f8e804c22c9ff674f8db8575b489a72d538f4e879ea_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-multipathd-rhel9@sha256:38f408fbf3b341b7e4c6287ff38d7e60a9d3b3694946d2044248cf78b1f04634_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-netutils-rhel9@sha256:30e240f9fccc883117c07e9b77d7860c5359c8c7bbca7bb11872b26d09a8b712_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-agent-base-rhel9@sha256:f0dc61ef825b7aebcc967a0770e988469514c968567d2a95601d857169cc8d6a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-base-rhel9@sha256:44e77e9de0793bdcbf149bd5611a1655e5a565bdfdeab46556f70944cc80d3a2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-dhcp-agent-rhel9@sha256:7eedb60d34d1ef4e5558ee4fc5fffd6c6a6437afdf9e8b0f09c0de16ded8b1fd_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-metadata-agent-ovn-rhel9@sha256:ffe0c4a6ba1ad52fa868dfbee6eacb1ce695004152cd87a47dab7bac0418ed62_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-ovn-agent-rhel9@sha256:0703741754d0ceaaccb7142b5ab19493b7c50f17195cb74bb7e27f51dd29d19f_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-server-rhel9@sha256:136ace6bf8381f90816a9e46b6371af9ed298951cf5d2db308bd0568888abae1_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-neutron-sriov-agent-rhel9@sha256:98af54c6b7a38741099c89234924d8772da474ae582f0cd1b9e5cb6e628c2be4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-api-rhel9@sha256:8ba48f9e5cdc33484981cfc228b719c13140f2e7947b539f748f02687975ed47_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-base-rhel9@sha256:bea56e32c5d9465ce24deb7625e6a553c2578d17e42436d749b4a6a129650950_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-compute-rhel9@sha256:f2bdfd98f127cb125aa25cce8cbccc3850e92bdd812a8ceb9e989c254f9e4273_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-conductor-rhel9@sha256:6a80106425bb8431b248702dc9aa8162d64d80b50b2869d57a48eab5b9fd73b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-novncproxy-rhel9@sha256:cd2a348fcebb00aeb68ddcce8914fb7c3b5e5580b93888716b24009055d5093d_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-nova-scheduler-rhel9@sha256:32b14b4b62eed55d08dedd8e8aebaaa5de104fa908e07dd39baba466cda5d3e8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-api-rhel9@sha256:80aa481c4e35fff70318ec7a8d659396f887923a0f3d8efbffbd293b74af2062_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-base-rhel9@sha256:14b2aa1bb73a926993f06a824ce1fe50fd0b0c06d2cf99ace4a951b7e4053523_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-health-manager-rhel9@sha256:7c82262097e90542da2a2461dd6478e4a2394896eee5f1750251c10e680021e4_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-housekeeping-rhel9@sha256:f2f2c2de12c827f3fb213e80fc1b8b57e59c64e403df773f2ce2992162a36489_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-octavia-worker-rhel9@sha256:9f746fec3a280447dd9aa6d626e711e5afac7703b256239948a18880248a2fa2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-openstackclient-rhel9@sha256:c652b0999bd2338508574481b8d8b37f360a67af01f435e293889ea3b492d19a_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-base-rhel9@sha256:e57b9dc3a4c6a37b3e8408558bf9484745f1ff592d407f810b4f6d502fbb7e96_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-bgp-agent-rhel9@sha256:8ae02bf07bef3b9e9aca0a88a67425074f81f1cef5c3ce21a2df2063212670ff_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-controller-rhel9@sha256:8ca833db2ed3dd395d506b45fcc9f383e41adb41c2630056add10bae6b5d6ed5_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-nb-db-server-rhel9@sha256:814959a3146c77a7d10f8d1ee479993c69edf8586373d299c5aceb41fd172ab7_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-northd-rhel9@sha256:89138506ee0abcbd942f4eb039972bb04fc45aef8bd2d65b4f521ae2528e8b9e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-ovn-sb-db-server-rhel9@sha256:0064835a00e9437a1df956effd8396c1a23110c7711b77d068bf5b981d1a1703_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-placement-api-rhel9@sha256:a39d4ef8a9b3a418bce7375b518e44164cd2d3300fc0a11e36f687a1ece07d4b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rabbitmq-rhel9@sha256:4bacee8302b95a42739609f1c6e68c184670914761a25690272ddadbcd4349c8_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-redis-rhel9@sha256:7c4005e061d5b3464c7aced86888fb85d1eddaeba9aa8b8f6d88bf7a4dee7e95_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-rsyslog-rhel9@sha256:4661fbd6f02027486a57842ad6d209db564597447d65473d71cfca9963afc447_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-account-rhel9@sha256:4ff001425d29e7389dc25e0c323341faff85af84293e30dac390fa2d9fe624ec_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-base-rhel9@sha256:70f334c234f95163e644547148433400c72449ac0e7738f063b58b924d6adbed_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-container-rhel9@sha256:1feb4723b3a6076d015a5e2f1108355b2264124e4ae5d9dbd12bec22652b434b_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-object-rhel9@sha256:c8eda6be8d0a387f79d9927fedda152a4097bb0924ee89664a19111a1e7ab51e_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-swift-proxy-server-rhel9@sha256:801b944e121909301c97a0f70e8b61c789784133c47f205a5627dfb74f58c611_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-all-rhel9@sha256:eda48fe0de53c82867d13a8a07b43c07419be6f55d63654473edf4c3386fd8a3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-tempest-rhel9@sha256:80da83fc412aa94e3ce8d3aee9c56953a059c0371df14086237b2ae1cf1ac6b2_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-unbound-rhel9@sha256:5391729c57912ad897da17f7177c600b29708424301ba1d03fd336fba6db53c3_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-api-rhel9@sha256:b5cfcfc700d916d1c6e913cf8ead295f58a957629858f0a829fb5dd09141ad02_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-applier-rhel9@sha256:ddff1234a685b06dc236397648dd775b3598cbbf75b924888f99b229fa40b253_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-base-rhel9@sha256:4ab3b0570335c23cf6fe547e28dafb9800a12638fc0e222b982f61bdab613040_amd64",
"Red Hat OpenStack Services on OpenShift 18:registry.redhat.io/rhoso/openstack-watcher-decision-engine-rhel9@sha256:391063157fa2e4151f50ecc391b3025bf8ecbe89c3700f0181ffd93a356835c2_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:4939
Vulnerability from csaf_redhat - Published: 2026-03-18 16:03 - Updated: 2026-07-01 00:16A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Logging for Red Hat OpenShift - 6.3.4",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Logging 6.3.4 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4939",
"url": "https://access.redhat.com/errata/RHSA-2026:4939"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4939.json"
}
],
"title": "Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.3.4",
"tracking": {
"current_release_date": "2026-07-01T00:16:59+00:00",
"generator": {
"date": "2026-07-01T00:16:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4939",
"initial_release_date": "2026-03-18T16:03:08+00:00",
"revision_history": [
{
"date": "2026-03-18T16:03:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T16:03:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:16:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Logging Subsystem for Red Hat OpenShift 6.3",
"product": {
"name": "Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:6.3::el9"
}
}
}
],
"category": "product_family",
"name": "Logging Subsystem for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409902"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256%3Aef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773410986"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409729"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409908"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3Ab383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409769"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256%3A91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773410994"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409904"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409854"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3Af2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1772131211"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409902"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409729"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409908"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409769"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409904"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409854"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1772131211"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409902"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409729"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3Ae74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409908"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409769"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409904"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Adc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409854"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1772131211"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409902"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Add7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409729"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3Ae7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409908"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409769"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409904"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3A4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1773409854"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging\u0026tag=1772131211"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.3",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:03:08+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/ocp-4-19-release-notes\n\nFor Red Hat OpenShift Logging 6.3.4, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.3",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4939"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:03:08+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/ocp-4-19-release-notes\n\nFor Red Hat OpenShift Logging 6.3.4, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.3",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4939"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:ef8278e7016f18b9acaf38d4d114d2033d7bb29bd6cfafeedeaeae9686edeeeb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:16e6badbf744a48a164b3c69d8179dcab82107f06def3d8514854db9ea0f005a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:207a00b2f9a41ed77b1d8343317ff5a14c0f84a70829f0b79e602b137702634f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:2daf570f7a8e315affeee22cf60f40db7e780d94b157b00cbe1f7423fffa0009_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7c756fd47671cde4c770eea5acb4e3848414830237ae5ae76b95227065e91d30_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:09de400e678ecef08ca4296683871b0a412fca107ad216425a85118ab3ef7b72_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3768f4409a18d0c402bef4bb6f228644f7d36072ba48100a44b7eaf8fdb612a5_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:8099fac5a39cffe1c05fe2731e526c9ff1ea63328e56e5970d9b95187951cafb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:dd7e595d969bc6d1e5d30a443b26a07474669fedc7ef86898f02abd577f73602_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:85ea7fa9889365a5c83c8ce28ad9b727c284d7d54be9aa8f63b86eba72feb473_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9cff5ee09d03db33a0fd73d4007c4cf10a8c27fc92d356395fd80f9f39df347f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e74d0696a64632ee257b2fa81f3dec86fb32ab5ee249afbdeb841d6a27a73e75_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:e7f52be6057be4043b597b335da1b9205979068c2d01fb0086cde0cfa2e1bb35_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:91b2db82f92351cb12aa9869320679dc2df83d3d91ed04dd11d0afc509baf8bb_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:3118e4ed18e42488dab8bc0e40770591ee78f51e50762ff6042d4eee1d8ce972_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:48d344cba37ad911f9dca2dc004652520ed25f47c0809a31bf36adcb1927dbb9_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:8cf1ac4f8788eae7f05b90e5bf9398f10b5c47b6dc19f74fa9cacd3b2a2c6a44_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:b383ab2d419780f5c32ca5432b809532be74b027220464e0e660b94d7b7a5a04_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:03ac5a12d0c25ce57b647e5e01fc3fda4c89cd01c5961bc324f4dc6c991731ba_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:4cdab16071ef82f68fd006e0bfa833871b0734df6a1640221d89c4bc0a56494f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:784d854b481e9ee22818d89010b3e4c9a75ee75c284417ff9cd84a8e09ce1cd3_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:8885f10f41a079bb8d5b87d142e3151eaa15931f0362b05b3e99cb06a997ff43_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:4d0da9c968ef048ca7375a113bdb580ef73287575bc08e133caebfe4ec314b0f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:66472baa4213fc3614cd08644f19369aace9598212b75f79fb3031f168f2679e_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:9ea7198640b01a3338f9cdaca1fb59eb7d8c0d06a45f04aef722e37d7b28b4fd_amd64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:dc84223860b6ff9ac62591415b275af4f66e9677c9d5fb3f55c701884b93ddb5_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:1b4d88b65b3a19e3ed8b9d83e4124148c00cf14f660667dfd5fc77ebffacb367_s390x",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:6aaaa14013b66bd1bcf492d59dd1c590c34acbee4eecf2600af20fa197d60036_arm64",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:8f119286af2d414bbaa206aa67e2b522466021bd3d409990e0087e0c3bb59267_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.3:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f2f25178e9e7b7d98556ac44f2464d10021ca992aad2306e465c8cc2494a6214_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:4942
Vulnerability from csaf_redhat - Published: 2026-03-18 16:21 - Updated: 2026-07-01 00:12A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the extraction process itself might have sanitized the path. Attackers can craft a malicious wheel file that, when unpacked, changes the permissions of critical system files (e.g., /etc/passwd, SSH keys, config files), allowing for Privilege Escalation or arbitrary code execution by modifying now-writable scripts.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A flaw was found the Pillow Python imaging library. Providing a specially crafted PSD image may lead to an out-of-bounds write. This could potentially allow for arbitrary code execution or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
A flaw was found in pypdf. Processing a specially crafted PDF document, specifically with circular /Prev references in the cross-reference (xref) chain, can cause an infinite loop and a high consumption of CPU, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a "none" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12.15 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12.15",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4942",
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24049",
"url": "https://access.redhat.com/security/cve/CVE-2026-24049"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25639",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25990",
"url": "https://access.redhat.com/security/cve/CVE-2026-25990"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26996",
"url": "https://access.redhat.com/security/cve/CVE-2026-26996"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27628",
"url": "https://access.redhat.com/security/cve/CVE-2026-27628"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27904",
"url": "https://access.redhat.com/security/cve/CVE-2026-27904"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-28802",
"url": "https://access.redhat.com/security/cve/CVE-2026-28802"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4942.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12.15",
"tracking": {
"current_release_date": "2026-07-01T00:12:22+00:00",
"generator": {
"date": "2026-07-01T00:12:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4942",
"initial_release_date": "2026-03-18T16:21:15+00:00",
"revision_history": [
{
"date": "2026-03-18T16:21:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-22T07:19:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:12:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773766026"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aa5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765467"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765999"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765477"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Ac3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772132933"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054202"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054192"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3Af4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773775889"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773761676"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773771962"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765467"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Af15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765477"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054202"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054192"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Add1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773761676"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773771962"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765467"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765477"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054202"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ad547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054192"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773761676"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773771962"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765467"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773765477"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054202"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1772054192"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773761676"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ae39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773771962"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-24049",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-01-22T05:00:54.709179+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431959"
}
],
"notes": [
{
"category": "description",
"text": "A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the extraction process itself might have sanitized the path. Attackers can craft a malicious wheel file that, when unpacked, changes the permissions of critical system files (e.g., /etc/passwd, SSH keys, config files), allowing for Privilege Escalation or arbitrary code execution by modifying now-writable scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24049"
},
{
"category": "external",
"summary": "RHBZ#2431959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431959"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24049"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24049",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24049"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fef",
"url": "https://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fef"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/releases/tag/0.46.2",
"url": "https://github.com/pypa/wheel/releases/tag/0.46.2"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx",
"url": "https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx"
}
],
"release_date": "2026-01-22T04:02:08.706000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking"
},
{
"cve": "CVE-2026-25639",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"discovery_date": "2026-02-09T21:00:49.280114+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2438237"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "RHBZ#2438237",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2438237"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57",
"url": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.13.5",
"url": "https://github.com/axios/axios/releases/tag/v1.13.5"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433",
"url": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433"
}
],
"release_date": "2026-02-09T20:11:22.374000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig"
},
{
"cve": "CVE-2026-25990",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-02-11T21:05:39.535631+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439170"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found the Pillow Python imaging library. Providing a specially crafted PSD image may lead to an out-of-bounds write. This could potentially allow for arbitrary code execution or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25990"
},
{
"category": "external",
"summary": "RHBZ#2439170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439170"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25990"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25990",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25990"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/commit/9000313cc5d4a31bdcdd6d7f0781101abab553aa",
"url": "https://github.com/python-pillow/Pillow/commit/9000313cc5d4a31bdcdd6d7f0781101abab553aa"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-cfh3-3jmp-rvhc",
"url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-cfh3-3jmp-rvhc"
}
],
"release_date": "2026-02-11T20:53:52.524000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image"
},
{
"cve": "CVE-2026-26996",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-20T04:01:11.896063+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441268"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "minimatch: minimatch: Denial of Service via specially crafted glob patterns",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26996"
},
{
"category": "external",
"summary": "RHBZ#2441268",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441268"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26996"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5",
"url": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26",
"url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26"
}
],
"release_date": "2026-02-20T03:05:21.105000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "minimatch: minimatch: Denial of Service via specially crafted glob patterns"
},
{
"cve": "CVE-2026-27628",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2026-02-25T04:02:09.864561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442543"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pypdf. Processing a specially crafted PDF document, specifically with circular /Prev references in the cross-reference (xref) chain, can cause an infinite loop and a high consumption of CPU, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pypdf: possible infinite loop when loading circular /Prev entries in cross-reference streams",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a crafted PDF file to be processed by an application using the pypdf library. This issue can cause the application to enter an infinite loop and consume a high amount of CPU resources, eventually resulting in a denial of service with no other security impact. Due to these reasons, this vulnerability has been rated with a moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27628"
},
{
"category": "external",
"summary": "RHBZ#2442543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442543"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27628",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27628"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27628",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27628"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/commit/0fbd95938724ad2d72688d4112207c0590f0483f",
"url": "https://github.com/py-pdf/pypdf/commit/0fbd95938724ad2d72688d4112207c0590f0483f"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/issues/3654",
"url": "https://github.com/py-pdf/pypdf/issues/3654"
},
{
"category": "external",
"summary": "https://github.com/py-pdf/pypdf/security/advisories/GHSA-2rw7-x74f-jg35",
"url": "https://github.com/py-pdf/pypdf/security/advisories/GHSA-2rw7-x74f-jg35"
}
],
"release_date": "2026-02-25T02:45:37.543000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "pypdf: possible infinite loop when loading circular /Prev entries in cross-reference streams"
},
{
"cve": "CVE-2026-27904",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-26T02:01:23.004531+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442922"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27904"
},
{
"category": "external",
"summary": "RHBZ#2442922",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442922"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27904",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27904"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904"
},
{
"category": "external",
"summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74",
"url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74"
}
],
"release_date": "2026-02-26T01:07:42.693000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions"
},
{
"cve": "CVE-2026-28802",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2026-03-06T07:01:49.366979+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445120"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib: Signature verification bypass via malicious JWT allows unauthorized access",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-28802"
},
{
"category": "external",
"summary": "RHBZ#2445120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-28802",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28802"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75",
"url": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/b87c32ed07b8ae7f805873e1c9cafd1016761df7",
"url": "https://github.com/authlib/authlib/commit/b87c32ed07b8ae7f805873e1c9cafd1016761df7"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg"
}
],
"release_date": "2026-03-06T06:44:26.402000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T16:21:15+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4942"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:44efb07888bff09040aa413babedb3eed6ae9f329cb923ae9e09f2c65c507dd3_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:6421325d2c7f726c34e365442ba15e8dce873aa4b3087239c0d6514feb702d6d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:9ca58008c4b6d439afa2d9286252c85c1845ca4764e9c5e914ffbbc12684178e_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:d547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:26718ccb95dc9c16e9a68affd07c8f1ad9c4e5c86164827278aa165f7e047d2c_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:60b48ecb4c6d6769ad65b841142affc252abd5bb484532f8063097f13ba311db_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:80315fc3e515b6824fea23d86995354821089da0433696024a091e79e8526dad_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:c3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:15a526a64adaaa0d711e1f6f91d92e7a31385ea5596bd80cd61d01b247899309_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:1dd39e160ca0759d55e636d7a849fb3c89dbf5d52484e3059e3c8a4ef251b4ce_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:4c1bce7e8d7de7fd8cfd98de842a6efd75c3c8f1add02646b6bc0b427a1d55f7_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:041f90dc8ecb773ba6c09d0a5f0b3660c5c4e81f1641bd823b37c7e33d966bca_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:66a357f4f825a657b8f0548901aef392421726e8bf2085806d15bbb9a6eb70bd_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:6c90db8ea68ed0afd44aed2f773a8aea115c028fe6635ea87020d3e3fcb4fb90_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:a5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:f4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:1f87190bc1a9a0d5854572b6d39a00069b95c79cfe7c63a4562aa7fcbcee4c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:448968df737e1fe9efbe549ce6cded18b2a6c544b96aa4550f15f7d803d4a2af_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:48ca0b3afbfdc52d0407f2e3d62addffc65ac1f71abac7ebb643a52138753a93_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:dd1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:2f62df99c2b7697461a2865380344c90a6fb8aec7b279f8f2f6e0684b662d19f_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4076a739c16c0567def8339bff5e8adca2f995217ae55428061cd0136a7e7a21_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:56bcc55b01c76a1eb7ad8b265cf9dfdd488fc62bc353e3822864a0f6c4f98ffb_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib: Signature verification bypass via malicious JWT allows unauthorized access"
}
]
}
RHSA-2026:4952
Vulnerability from csaf_redhat - Published: 2026-03-18 21:13 - Updated: 2026-07-01 00:13A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4952",
"url": "https://access.redhat.com/errata/RHSA-2026:4952"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4952.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:13:30+00:00",
"generator": {
"date": "2026-07-01T00:13:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:4952",
"initial_release_date": "2026-03-18T21:13:13+00:00",
"revision_history": [
{
"date": "2026-03-18T21:13:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-18T21:13:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:13:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.5-4.el8_10.src",
"product": {
"name": "rhc-1:0.2.5-4.el8_10.src",
"product_id": "rhc-1:0.2.5-4.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.5-4.el8_10?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.5-4.el8_10.aarch64",
"product": {
"name": "rhc-1:0.2.5-4.el8_10.aarch64",
"product_id": "rhc-1:0.2.5-4.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.5-4.el8_10?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"product": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"product_id": "rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.5-4.el8_10?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"product": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"product_id": "rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.5-4.el8_10?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.5-4.el8_10.ppc64le",
"product": {
"name": "rhc-1:0.2.5-4.el8_10.ppc64le",
"product_id": "rhc-1:0.2.5-4.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.5-4.el8_10?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"product": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"product_id": "rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.5-4.el8_10?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"product": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"product_id": "rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.5-4.el8_10?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.5-4.el8_10.x86_64",
"product": {
"name": "rhc-1:0.2.5-4.el8_10.x86_64",
"product_id": "rhc-1:0.2.5-4.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.5-4.el8_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.5-4.el8_10.x86_64",
"product": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.x86_64",
"product_id": "rhc-debugsource-1:0.2.5-4.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.5-4.el8_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"product_id": "rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.5-4.el8_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.5-4.el8_10.s390x",
"product": {
"name": "rhc-1:0.2.5-4.el8_10.s390x",
"product_id": "rhc-1:0.2.5-4.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.5-4.el8_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"product": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"product_id": "rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.5-4.el8_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"product": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"product_id": "rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.5-4.el8_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.5-4.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64"
},
"product_reference": "rhc-1:0.2.5-4.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.5-4.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le"
},
"product_reference": "rhc-1:0.2.5-4.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.5-4.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x"
},
"product_reference": "rhc-1:0.2.5-4.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.5-4.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src"
},
"product_reference": "rhc-1:0.2.5-4.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.5-4.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64"
},
"product_reference": "rhc-1:0.2.5-4.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64"
},
"product_reference": "rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x"
},
"product_reference": "rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.5-4.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64"
},
"product_reference": "rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x"
},
"product_reference": "rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.5-4.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.5-4.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T21:13:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4952"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T21:13:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4952"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-18T21:13:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4952"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debuginfo-1:0.2.5-4.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:rhc-debugsource-1:0.2.5-4.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
}
]
}
RHSA-2026:5022
Vulnerability from csaf_redhat - Published: 2026-03-19 05:02 - Updated: 2026-07-01 00:16A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5022",
"url": "https://access.redhat.com/errata/RHSA-2026:5022"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5022.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:16:58+00:00",
"generator": {
"date": "2026-07-01T00:16:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5022",
"initial_release_date": "2026-03-19T05:02:24+00:00",
"revision_history": [
{
"date": "2026-03-19T05:02:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-19T05:02:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:16:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.2-1.el8_8.1.src",
"product": {
"name": "rhc-1:0.2.2-1.el8_8.1.src",
"product_id": "rhc-1:0.2.2-1.el8_8.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.2-1.el8_8.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.2-1.el8_8.1.ppc64le",
"product": {
"name": "rhc-1:0.2.2-1.el8_8.1.ppc64le",
"product_id": "rhc-1:0.2.2-1.el8_8.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.2-1.el8_8.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"product": {
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"product_id": "rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.2-1.el8_8.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"product": {
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"product_id": "rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.2-1.el8_8.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.2-1.el8_8.1.x86_64",
"product": {
"name": "rhc-1:0.2.2-1.el8_8.1.x86_64",
"product_id": "rhc-1:0.2.2-1.el8_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.2-1.el8_8.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"product": {
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"product_id": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.2-1.el8_8.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"product_id": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.2-1.el8_8.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.2-1.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le"
},
"product_reference": "rhc-1:0.2.2-1.el8_8.1.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.2-1.el8_8.1.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src"
},
"product_reference": "rhc-1:0.2.2-1.el8_8.1.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le"
},
"product_reference": "rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le"
},
"product_reference": "rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.2-1.el8_8.1.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src"
},
"product_reference": "rhc-1:0.2.2-1.el8_8.1.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-19T05:02:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5022"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-19T05:02:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5022"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.E4S:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.ppc64le",
"AppStream-8.8.0.Z.E4S:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.src",
"AppStream-8.8.0.Z.TUS:rhc-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debuginfo-1:0.2.2-1.el8_8.1.x86_64",
"AppStream-8.8.0.Z.TUS:rhc-debugsource-1:0.2.2-1.el8_8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:5030
Vulnerability from csaf_redhat - Published: 2026-03-19 05:15 - Updated: 2026-07-01 00:17A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rhc is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "rhc is a client tool and daemon that connects the system to Red Hat hosted services enabling system and subscription management.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:5030",
"url": "https://access.redhat.com/errata/RHSA-2026:5030"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5030.json"
}
],
"title": "Red Hat Security Advisory: rhc security update",
"tracking": {
"current_release_date": "2026-07-01T00:17:00+00:00",
"generator": {
"date": "2026-07-01T00:17:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:5030",
"initial_release_date": "2026-03-19T05:15:04+00:00",
"revision_history": [
{
"date": "2026-03-19T05:15:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-19T05:15:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:17:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.0-5.el8_4.src",
"product": {
"name": "rhc-1:0.2.0-5.el8_4.src",
"product_id": "rhc-1:0.2.0-5.el8_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.0-5.el8_4?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rhc-1:0.2.0-5.el8_4.x86_64",
"product": {
"name": "rhc-1:0.2.0-5.el8_4.x86_64",
"product_id": "rhc-1:0.2.0-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc@0.2.0-5.el8_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"product": {
"name": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"product_id": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debugsource@0.2.0-5.el8_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"product": {
"name": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"product_id": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rhc-debuginfo@0.2.0-5.el8_4?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.0-5.el8_4.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src"
},
"product_reference": "rhc-1:0.2.0-5.el8_4.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.0-5.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src"
},
"product_reference": "rhc-1:0.2.0-5.el8_4.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
},
"product_reference": "rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-19T05:15:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5030"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-19T05:15:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:5030"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.AUS:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.AUS:rhc-debugsource-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debuginfo-1:0.2.0-5.el8_4.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:rhc-debugsource-1:0.2.0-5.el8_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.